Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2024-679)

critical Nessus Plugin ID 205105

Version 1.6

Aug 30, 2024, 7:43 AM

  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202408300743

Version 1.5

Aug 29, 2024, 9:35 AM

  • Plugin metadata
  • CVE (set "CVE" coverage to "CVE-2024-41019,CVE-2024-41020,CVE-2024-41035,CVE-2024-41041,CVE-2024-41049,CVE-2024-41050,CVE-2024-41055,CVE-2024-41090,CVE-2024-41091,CVE-2024-42154")
  • CVSS metrics ("CVSSv2 score" set to 10.0)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C")
  • CVSS metrics ("CVSSv3 score" set to 9.8)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H")
  • CVSS metrics ("Cvssv4 score" set to 0.0)
  • CVSSv2 score source (changed from "CVE-2024-41049" to "CVE-2024-42154")
  • CVSSv2 severity (based on CVE-2024-42154, severity increased from "Medium" to "High")
  • CVSSv2 severity (based on None, severity decreased from "High" to "Low")
  • Detection (updated detection logic)
  • Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available")

Plugin Feed: 202408290935

Version 1.4

Aug 28, 2024, 7:43 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202408281943

Version 1.3

Aug 27, 2024, 7:43 AM

  • CVSS metrics ("CVSSv2 score" set to 6.8)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C")
  • CVSS metrics ("CVSSv3 score" set to 7.8)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H")
  • CVSSv2 score source (changed from "CVE-2024-41091" to "CVE-2024-41049")

Plugin Feed: 202408270743

Version 1.2

Aug 16, 2024, 7:34 AM

  • CVE (set "CVE" coverage to "CVE-2024-41019,CVE-2024-41020,CVE-2024-41035,CVE-2024-41041,CVE-2024-41049,CVE-2024-41050,CVE-2024-41055,CVE-2024-41090,CVE-2024-41091")
  • CVSS metrics ("CVSSv2 score" set to 4.9)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C")
  • CVSS metrics ("CVSSv3 score" set to 7.1)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H")
  • Detection (updated detection logic)
  • Plugin metadata

Plugin Feed: 202408160734

Version 1.1

Aug 7, 2024, 3:37 AM

  • New

Plugin Feed: 202408070337

* Changelogs are generally available for changes made after Nov 1, 2022