home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2004-001.nasl < prev    next >
Text File  |  2005-01-14  |  4KB  |  149 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2004:001
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(14101);
  12.  script_bugtraq_id(9154, 9356);
  13.  script_version ("$Revision: 1.4 $");
  14.  script_cve_id("CAN-2003-0984", "CAN-2003-0985");
  15.  
  16.  name["english"] = "MDKSA-2004:001: kernel";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2004:001 (kernel).
  22.  
  23.  
  24. A flaw in bounds checking in mremap() in the Linux kernel versions 2.4.23 and
  25. previous was discovered by Paul Starzetz. This flaw may be used to allow a local
  26. attacker to obtain root privilege.
  27. Another minor information leak in the RTC (real time clock) routines was fixed
  28. as well.
  29. All Mandrake Linux users are encouraged to upgrade to these packages
  30. immediately. To update your kernel, please follow the directions located at:
  31. http://www.mandrakesecure.net/en/kernelupdate.php
  32. Mandrake Linux 9.1 and 9.2 users should upgrade the initscripts (9.1) and
  33. bootloader-utils (9.2) packages prior to upgrading the kernel as they contain a
  34. fixed installkernel script that fixes instances where the loop module was not
  35. being loaded and would cause mkinitrd to fail.
  36. Users requiring commercial NVIDIA drivers can find drivers for Mandrake Linux
  37. 9.2 at MandrakeClub.
  38.  
  39.  
  40. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:001
  41. Risk factor : High";
  42.  
  43.  
  44.  
  45.  script_description(english:desc["english"]);
  46.  
  47.  summary["english"] = "Check for the version of the kernel package";
  48.  script_summary(english:summary["english"]);
  49.  
  50.  script_category(ACT_GATHER_INFO);
  51.  
  52.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  53.  family["english"] = "Mandrake Local Security Checks";
  54.  script_family(english:family["english"]);
  55.  
  56.  script_dependencies("ssh_get_info.nasl");
  57.  script_require_keys("Host/Mandrake/rpm-list");
  58.  exit(0);
  59. }
  60.  
  61. include("rpm.inc");
  62. if ( rpm_check( reference:"kernel-2.4.19.37mdk-1-1mdk", release:"MDK9.0", yank:"mdk") )
  63. {
  64.  security_hole(0);
  65.  exit(0);
  66. }
  67. if ( rpm_check( reference:"kernel-enterprise-2.4.19.37mdk-1-1mdk", release:"MDK9.0", yank:"mdk") )
  68. {
  69.  security_hole(0);
  70.  exit(0);
  71. }
  72. if ( rpm_check( reference:"kernel-secure-2.4.19.37mdk-1-1mdk", release:"MDK9.0", yank:"mdk") )
  73. {
  74.  security_hole(0);
  75.  exit(0);
  76. }
  77. if ( rpm_check( reference:"kernel-smp-2.4.19.37mdk-1-1mdk", release:"MDK9.0", yank:"mdk") )
  78. {
  79.  security_hole(0);
  80.  exit(0);
  81. }
  82. if ( rpm_check( reference:"kernel-source-2.4.19-37mdk", release:"MDK9.0", yank:"mdk") )
  83. {
  84.  security_hole(0);
  85.  exit(0);
  86. }
  87. if ( rpm_check( reference:"initscripts-7.06-12.3.91mdk", release:"MDK9.1", yank:"mdk") )
  88. {
  89.  security_hole(0);
  90.  exit(0);
  91. }
  92. if ( rpm_check( reference:"kernel-2.4.21.0.27mdk-1-1mdk", release:"MDK9.1", yank:"mdk") )
  93. {
  94.  security_hole(0);
  95.  exit(0);
  96. }
  97. if ( rpm_check( reference:"kernel-secure-2.4.21.0.27mdk-1-1mdk", release:"MDK9.1", yank:"mdk") )
  98. {
  99.  security_hole(0);
  100.  exit(0);
  101. }
  102. if ( rpm_check( reference:"kernel-smp-2.4.21.0.27mdk-1-1mdk", release:"MDK9.1", yank:"mdk") )
  103. {
  104.  security_hole(0);
  105.  exit(0);
  106. }
  107. if ( rpm_check( reference:"kernel-source-2.4.21-0.27mdk", release:"MDK9.1", yank:"mdk") )
  108. {
  109.  security_hole(0);
  110.  exit(0);
  111. }
  112. if ( rpm_check( reference:"bootloader-utils-1.6-3.1.92mdk", release:"MDK9.2", yank:"mdk") )
  113. {
  114.  security_hole(0);
  115.  exit(0);
  116. }
  117. if ( rpm_check( reference:"kernel-2.4.22.26mdk-1-1mdk", release:"MDK9.2", yank:"mdk") )
  118. {
  119.  security_hole(0);
  120.  exit(0);
  121. }
  122. if ( rpm_check( reference:"kernel-enterprise-2.4.22.26mdk-1-1mdk", release:"MDK9.2", yank:"mdk") )
  123. {
  124.  security_hole(0);
  125.  exit(0);
  126. }
  127. if ( rpm_check( reference:"kernel-secure-2.4.22.26mdk-1-1mdk", release:"MDK9.2", yank:"mdk") )
  128. {
  129.  security_hole(0);
  130.  exit(0);
  131. }
  132. if ( rpm_check( reference:"kernel-smp-2.4.22.26mdk-1-1mdk", release:"MDK9.2", yank:"mdk") )
  133. {
  134.  security_hole(0);
  135.  exit(0);
  136. }
  137. if ( rpm_check( reference:"kernel-source-2.4.22-26mdk", release:"MDK9.2", yank:"mdk") )
  138. {
  139.  security_hole(0);
  140.  exit(0);
  141. }
  142. if (rpm_exists(rpm:"kernel-", release:"MDK9.0")
  143.  || rpm_exists(rpm:"kernel-", release:"MDK9.1")
  144.  || rpm_exists(rpm:"kernel-", release:"MDK9.2") )
  145. {
  146.  set_kb_item(name:"CAN-2003-0984", value:TRUE);
  147.  set_kb_item(name:"CAN-2003-0985", value:TRUE);
  148. }
  149.