The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3711 advisory.

    -------------------------------------------------------------------------     Debian LTS Advisory DLA-3711-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/                        Ben Hutchings     January 11, 2024                              https://wiki.debian.org/LTS
    -------------------------------------------------------------------------

    Package        : linux-5.10     Version        : 5.10.205-2~deb10u1     CVE ID         : CVE-2021-44879 CVE-2023-5178 CVE-2023-5197 CVE-2023-5717                      CVE-2023-6121 CVE-2023-6531 CVE-2023-6817 CVE-2023-6931                      CVE-2023-6932 CVE-2023-25775 CVE-2023-34324 CVE-2023-35827                      CVE-2023-45863 CVE-2023-46813 CVE-2023-46862 CVE-2023-51780                      CVE-2023-51781 CVE-2023-51782     Debian Bug     : 1032104 1035587 1052304

    Several vulnerabilities have been discovered in the Linux kernel that     may lead to a privilege escalation, denial of service or information     leaks.

    CVE-2021-44879

        Wenqing Liu reported a NULL pointer dereference in the f2fs         implementation. An attacker able to mount a specially crafted image         can take advantage of this flaw for denial of service.

    CVE-2023-5178

        Alon Zahavi reported a use-after-free flaw in the NVMe-oF/TCP         subsystem in the queue initialization setup, which may result in         denial of service or privilege escalation.

    CVE-2023-5197

        Kevin Rich discovered a use-after-free flaw in the netfilter         subsystem which may result in denial of service or privilege         escalation for a user with the CAP_NET_ADMIN capability in any user         or network namespace.

    CVE-2023-5717

        Budimir Markovic reported a heap out-of-bounds write vulnerability         in the Linux kernel's Performance Events system caused by improper         handling of event groups, which may result in denial of service or         privilege escalation. The default settings in Debian prevent         exploitation unless more permissive settings have been applied in         the kernel.perf_event_paranoid sysctl.

    CVE-2023-6121

        Alon Zahavi reported an out-of-bounds read vulnerability in the         NVMe-oF/TCP which may result in an information leak.

    CVE-2023-6531

        Jann Horn discovered a use-after-free flaw due to a race condition         when the unix garbage collector's deletion of a SKB races         with unix_stream_read_generic() on the socket that the SKB is         queued on.

    CVE-2023-6817

        Xingyuan Mo discovered that a use-after-free in Netfilter's         implementation of PIPAPO (PIle PAcket POlicies) may result in denial         of service or potential local privilege escalation for a user with         the CAP_NET_ADMIN capability in any user or network namespace.

    CVE-2023-6931

        Budimir Markovic reported a heap out-of-bounds write vulnerability         in the Linux kernel's Performance Events system which may result in         denial of service or privilege escalation. The default settings in         Debian prevent exploitation unless more permissive settings have         been applied in the kernel.perf_event_paranoid sysctl.

    CVE-2023-6932

        A use-after-free vulnerability in the IPv4 IGMP implementation may         result in denial of service or privilege escalation.

    CVE-2023-25775

        Ivan D Barrera, Christopher Bednarz, Mustafa Ismail and Shiraz         Saleem discovered that improper access control in the Intel Ethernet         Controller RDMA driver may result in privilege escalation.

    CVE-2023-34324

        Marek Marczykowski-Gorecki reported a possible deadlock in the Xen         guests event channel code which may allow a malicious guest         administrator to cause a denial of service.

    CVE-2023-35827

        Zheng Wang reported a use-after-free flaw in the Renesas Ethernet         AVB support driver.

    CVE-2023-45863

        A race condition in library routines for handling generic kernel         objects may result in an out-of-bounds write in the         fill_kobj_path() function.

    CVE-2023-46813

        Tom Dohrmann reported that a race condition in the Secure Encrypted         Virtualization (SEV) implementation when accessing MMIO registers         may allow a local attacker in a SEV guest VM to cause a denial of         service or potentially execute arbitrary code.

    CVE-2023-46862

        It was discovered that a race condition in the io_uring         subsystem may result in a NULL pointer dereference, causing a         denial of service.

    CVE-2023-51780

        It was discovered that a race condition in the ATM (Asynchronous         Transfer Mode) subsystem may lead to a use-after-free.

    CVE-2023-51781

        It was discovered that a race condition in the Appletalk subsystem         may lead to a use-after-free.

    CVE-2023-51782

        It was discovered that a race condition in the Amateur Radio X.25         PLP (Rose) support may lead to a use-after-free. This module is not         auto-loaded on Debian systems, so this issue only affects systems         where it is explicitly loaded.

    For Debian 10 buster, these problems have been fixed in version     5.10.205-2~deb10u1.  This update additionally fixes Debian bugs     #1032104, #1035587, and #1052304; and includes many more bug fixes     from stable updates 5.10.198-5.10.205 inclusive.

    We recommend that you upgrade your linux-5.10 packages.

    For the detailed security status of linux-5.10 please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/linux-5.10

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS     Attachment:
    signature.asc     Description: PGP signature

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian dla-3711 : linux-config-5.10 - security update

critical Nessus Plugin ID 189090

Version 1.3

Version 1.2

Version 1.1

Version 1.0

Version 1.3 Jan 22, 2025, 8:38 PM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Plugin metadata Plugin Feed: 202501222038
Version 1.2 Jun 19, 2024, 9:24 AM CVSSv3 score source (changed from "CVE-2023-5178" to "CVE-2023-25775") Plugin Feed: 202406190924
Version 1.1 Mar 27, 2024, 7:16 PM Detection (Debian kernel vulns will now be evaluated against the running kernel version instead of the highest installed version) Plugin Feed: 202403271916
Version 1.0 Jan 17, 2024, 12:13 AM New Plugin Feed: 202401170013