Detections
Analytics

Oracle Linux 8 : kernel (ELSA-2020-1769)

critical Nessus Plugin ID 181001

Language:

Synopsis

The remote Oracle Linux host is missing one or more security updates.

Description

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1769 advisory.

 [4.18.0-193.el8.OL8]
 - Oracle Linux certificates (Alexey Petrenko)
 - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
 - Update x509.genkey [Orabug: 24817676]

 [4.18.0-193.el8]
 - [kvm] KVM: PPC: Book3S HV: Use __gfn_to_pfn_memslot in HPT page fault handler (Sam Bobroff) [1815491]
 - [net] tcp: also NULL skb->dev when copy was needed (Florian Westphal) [1775961 ]
 - [net] tcp: ensure skb->dev is NULL before leaving TCP stack (Florian Westphal) [1775961]

 [4.18.0-192.el8]
 - [drm] drm/bochs: downgrade pci_request_region failure from error to warning (D ave Airlie) [1804735]
 - [drm] drm/bochs: deinit bugfix (Dave Airlie) [1804735]
 - [fs] gfs2: fix O_EXCL|O_CREAT handling on cold dcache (Andrew Price) [1811787]
 - [net] esp: remove the skb from the chain when its enqueued in cryptd_wq (Xin Long) [1807909]
 - [powerpc] powerpc/nvdimm: set target_node properly (Diego Domingos) [1815038]

 [4.18.0-191.el8]
 - [netdrv] net/mlx5e: Dont clear the whole vf config when switching modes (moha mad meib) [1814350]
 - [fs] fuse: fix stack use after return (Miklos Szeredi) [1814666]

 [4.18.0-190.el8]
 - [powerpc] powerpc/pseries: Avoid NULL pointer dereference when drmem is unavai lable (David Hildenbrand) [1812874]
 - [x86] kvm/svm: PKU not currently supported (Wei Huang) [1789159]
 - [x86] Remove the unsupported check for Cooper Lake (David Arcari) [1813921]

 [4.18.0-189.el8]
 - [netdrv] net/mlx5e: Show/set Rx network flow classification rules on ul rep (A laa Hleihel) [1795156 1794280]
 - [netdrv] net/mlx5e: Init ethtool steering for representors (Alaa Hleihel) [179 5156 1794280]
 - [netdrv] net/mlx5e: Show/set Rx flow indir table and RSS hash key on ul rep (A laa Hleihel) [1795156 1794280]
 - [netdrv] net/mlx5e: Introduce root ft concept for representors netdevs (Alaa H leihel) [1795156 1794280]
 - [netdrv] net/mlx5: E-Switch, Use vport metadata matching only when mandatory ( Alaa Hleihel) [1795156]
 - [nvme] nvme: log additional message for controller status (David Milburn) [175 2952]

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://linux.oracle.com/errata/ELSA-2020-1769.html

Plugin Details

Severity: Critical

ID: 181001

File Name: oraclelinux_ELSA-2020-1769.nasl

Version: 1.2

Type: local

Agent: unix

Published: 9/7/2023

Updated: 11/1/2024

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2019-18805

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:oracle:linux:kernel-tools-libs-devel, p-cpe:/a:oracle:linux:kernel-devel, p-cpe:/a:oracle:linux:kernel-cross-headers, p-cpe:/a:oracle:linux:kernel-debug-modules, cpe:/o:oracle:linux:8, p-cpe:/a:oracle:linux:kernel-tools, p-cpe:/a:oracle:linux:kernel-debug-devel, p-cpe:/a:oracle:linux:kernel-headers, p-cpe:/a:oracle:linux:kernel-modules, p-cpe:/a:oracle:linux:kernel-debug, p-cpe:/a:oracle:linux:kernel-core, p-cpe:/a:oracle:linux:kernel-abi-whitelists, p-cpe:/a:oracle:linux:kernel-debug-modules-extra, p-cpe:/a:oracle:linux:python3-perf, p-cpe:/a:oracle:linux:bpftool, p-cpe:/a:oracle:linux:kernel-debug-core, p-cpe:/a:oracle:linux:perf, p-cpe:/a:oracle:linux:kernel-modules-extra, p-cpe:/a:oracle:linux:kernel-tools-libs, p-cpe:/a:oracle:linux:kernel

Required KB Items: Host/OracleLinux, Host/RedHat/release, Host/RedHat/rpm-list, Host/local_checks_enabled

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/5/2020

Vulnerability Publication Date: 11/30/2018

Reference Information

CVE: CVE-2018-16871, CVE-2019-10639, CVE-2019-15090, CVE-2019-15099, CVE-2019-15221, CVE-2019-17053, CVE-2019-17055, CVE-2019-18805, CVE-2019-19057, CVE-2019-19073, CVE-2019-19074, CVE-2019-19534, CVE-2019-19768, CVE-2019-19922, CVE-2019-8980, CVE-2020-1749