Chip 2007 January, February, March & April

home *** CD-ROM | disk | FTP | other *** search

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2002-041.nasl < prev next >

Wrap

Text File | 2005-01-14 | 12KB | 416 lines

# # (C) Tenable Network Security # # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2002:041 # if ( ! defined_func("bn_random") ) exit(0); if(description) { script_id(13945); script_version ("$Revision: 1.2 $"); name["english"] = "MDKSA-2002:041: kernel"; script_name(english:name["english"]); desc["english"] = " The remote host is missing the patch for the advisory MDKSA-2002:041 (kernel). A problem was discovered in the CIPE (VPN tunnel) implementation in the Linux kernel where a malformed packet could cause a crash. Andrew Griffiths discovered a vulnerability that allows remote machines to read random memory by utilizing a bug in the ICMP implementation of Linux kernels. This only affects kernels prior to 2.4.0-test6 and 2.2.18; all Mandrake Linux 2.4 kernels are not vulnerable to this problem. Another problem was discovered by the Linux Netfilter team in the IRC connection tracking component of netfilter in Linux 2.4 kernels. It consists of a very broad netmask setting which is applied to check if an IRC DCC connection through a masqueraded firewall should be allowed. This would lead to unwanted ports being opened on the firewall which could possibly allow inbound connections depending on the firewall rules in use. The 2.2 and 2.4 kernels are also affected by the zlib double-free() problem as routines from the compression library are used by functions that uncompress filesystems loaded into ramdisks and other occassions that are not security-critical. The kernel also uses the compression library in the PPP layer as well as the freeswan IPSec kernel module. As well, a number of other non-security fixes are present in these kernels, including new and enhanced drivers, LSB compliance, and more. MandrakeSoft encourages all users to upgrade their kernel as soon as possible to these new 2.2 and 2.4 kernels. NOTE: This update cannot be accomplished via MandrakeUpdate; it must be done on the console. This prevents one from upgrading a kernel instead of installing a new kernel. To upgrade, please ensure that you have first upgraded iptables, mkinitrd, and initscripts packages if they are applicable to your platform. Use 'rpm -ivh kernel_package' to install the new kernel. Prior to rebooting, double-check your /etc/lilo.conf, /boot/grub/menu.lst, or /etc/yaboot.conf (PPC users only) to ensure that you are able to boot properly into both old and new kernels (this will allow you to boot into the old kernel if the new kernel does not work to your liking). LILO users should execute '/sbin/lilo -v', GRUB users should execute 'sh /boot/grun/install.sh', and PPC users must type '/sbin/ybin -v' to write the boot record in order to reboot into the new kernel if you made any changes to the respective boot configuration files. New kernels for Mandrake Linux 8.1/IA64 will be available shortly. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:041 Risk factor : High"; script_description(english:desc["english"]); summary["english"] = "Check for the version of the kernel package"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security"); family["english"] = "Mandrake Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Mandrake/rpm-list"); exit(0); } include("rpm.inc"); if ( rpm_check( reference:"alsa-2.2.19_0.5.10b-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"alsa-source-2.2.19_0.5.10b-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-headers-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-pcmcia-cs-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-secure-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-smp-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-source-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-utils-2.2.19-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"reiserfs-utils-2.2.19_3.5.29-6.4mdk", release:"MDK7.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"alsa-2.2.19_0.5.10b-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"alsa-source-2.2.19_0.5.10b-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-headers-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-pcmcia-cs-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-secure-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-smp-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-source-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-utils-2.2.19-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"reiserfs-utils-2.2.19_3.5.29-6.4mdk", release:"MDK7.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"initscripts-5.83-7.1mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"iptables-1.2.5-1.1mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"iptables-ipv6-1.2.5-1.1mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.4.18.8.2mdk-1-3mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.4.18.8.2mdk-pcmcia-cs-1-3mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-BOOT-2.4.18.8.2mdk-1-3mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-2.4.18-8.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-html-2.4.18-8.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-pdf-2.4.18-8.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-ps-2.4.18-8.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-secure-2.4.18.8.2mdk-1-3mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-smp-2.4.18.8.2mdk-1-3mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-source-2.4.18-8.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-2.2.20-9.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-smp-2.2.20-9.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-source-2.2.20-9.2mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"mkinitrd-3.1.6-28.1mdk", release:"MDK8.0", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"iptables-1.2.5-1.1mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"iptables-ipv6-1.2.5-1.1mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.4.18.8.2mdk-1-3mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.4.18.8.2mdk-pcmcia-cs-1-3mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-2.4.18-8.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-html-2.4.18-8.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-pdf-2.4.18-8.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-ps-2.4.18-8.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-secure-2.4.18.8.2mdk-1-3mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-smp-2.4.18.8.2mdk-1-3mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-source-2.4.18-8.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-2.2.20-9.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-smp-2.2.20-9.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-source-2.2.20-9.2mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"mkinitrd-3.1.6-28.1mdk", release:"MDK8.1", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"devfsd-1.3.25-1.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-2.4.18.8.1mdk-1-3mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-BOOT-2.4.18.8.1mdk-1-3mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-2.4.18-8.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-html-2.4.18-8.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-pdf-2.4.18-8.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-doc-ps-2.4.18-8.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-secure-2.4.18.8.1mdk-1-3mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-smp-2.4.18.8.1mdk-1-3mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel-source-2.4.18-8.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-2.2.20-9.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-smp-2.2.20-9.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); } if ( rpm_check( reference:"kernel22-source-2.2.20-9.1mdk", release:"MDK8.2", yank:"mdk") ) { security_hole(0); exit(0); }