The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3446 advisory.

    -------------------------------------------------------------------------     Debian LTS Advisory DLA-3446-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/                        Ben Hutchings     June 05, 2023                                 https://wiki.debian.org/LTS
    -------------------------------------------------------------------------

    Package        : linux-5.10     Version        : 5.10.179-1~deb10u1     CVE ID         : CVE-2023-0386 CVE-2023-31436 CVE-2023-32233     Debian Bug     : 1035779

    Several vulnerabilities have been discovered in the Linux kernel that     may lead to a privilege escalation, denial of service or information     leaks.

    CVE-2023-0386

        It was discovered that under certain conditions the overlayfs         filesystem implementation did not properly handle copy up         operations. A local user permitted to mount overlay mounts in user         namespaces can take advantage of this flaw for local privilege         escalation.

    CVE-2023-31436

        Gwangun Jung reported a a flaw causing heap out-of-bounds         read/write errors in the traffic control subsystem for the Quick         Fair Queueing scheduler (QFQ) which may result in information         leak, denial of service or privilege escalation.

    CVE-2023-32233

        Patryk Sondej and Piotr Krysiuk discovered a use-after-free flaw         in the Netfilter nf_tables implementation when processing batch         requests, which may result in local privilege escalation for a         user with the CAP_NET_ADMIN capability in any user or network         namespace.

    For Debian 10 buster, these problems have been fixed in version     5.10.179-1~deb10u1.

    We recommend that you upgrade your linux-5.10 packages.

    For the detailed security status of linux-5.10 please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/linux-5.10

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS     Attachment:
    signature.asc     Description: PGP signature

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian dla-3446 : linux-config-5.10 - security update

high Nessus Plugin ID 176729

Version 1.5

Version 1.4

Version 1.3

Version 1.2

Version 1.1

Version 1.0

Version 1.5 Jan 22, 2025, 5:44 PM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Plugin metadata Plugin Feed: 202501221744
Version 1.4 Sep 27, 2024, 3:31 PM Exploit attributes ("Exploit framework metasploit" set to "True") Plugin Feed: 202409271531
Version 1.3 Mar 27, 2024, 7:16 PM Detection (Debian kernel vulns will now be evaluated against the running kernel version instead of the highest installed version) Plugin Feed: 202403271916
Version 1.2 Oct 4, 2023, 4:16 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202310041616
Version 1.1 Aug 23, 2023, 4:09 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") Exploit attributes ("Exploit framework core" set to "True") Plugin Feed: 202308231609
Version 1.0 Jun 6, 2023, 2:12 PM New Plugin Feed: 202306061412