Test Kennung:	1.3.6.1.4.1.25623.1.0.883257
Kategorie:	CentOS Local Security Checks
Titel:	CentOS: Security Advisory for bpftool (CESA-2020:2664)
Zusammenfassung:	The remote host is missing an update for the 'bpftool'; package(s) announced via the CESA-2020:2664 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'bpftool' package(s) announced via the CESA-2020:2664 advisory. Vulnerability Insight: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario (CVE-2020-12888) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel: hw: provide reporting and microcode mitigation toggle for CVE-2020-0543 / Special Register Buffer Data Sampling (SRBDS) (BZ#1827187) * kernel BUG at fs/fscache/operation.c:70! FS-Cache: 4 == 5 is false - current state is FSCACHE_OP_ST_COMPLETE but should be FSCACHE_OP_CANCELLED in fscache_enqueue_operation (BZ#1839757) * Deadlock condition grabbing ssb_state lock (BZ#1841121) 1836244 - CVE-2020-12888 Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: kernel-3.10.0-1127.13.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-1127.13.1.el7.noarch.rpm kernel-doc-3.10.0-1127.13.1.el7.noarch.rpm x86_64: bpftool-3.10.0-1127.13.1.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debug-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1127.13.1.el7.x86_64.rpm kernel-devel-3.10.0-1127.13.1.el7.x86_64.rpm kernel-headers-3.10.0-1127.13.1.el7.x86_64.rpm kernel-tools-3.10.0-1127.13.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-1127.13.1.el7.x86_64.rpm perf-3.10.0-1127.13.1.el7.x86_64.rpm perf-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm python-perf-3.10.0-1127.13.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: bpftool-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-1127.13.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-1127.13.1.el7.x86_64.rpm kernel-tools-d ... Description truncated. Please see the references for more information. Affected Software/OS: 'bpftool' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 4.7 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-12888 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CBEHRQQZTKJTPQFPY3JAO7MQ4JAFEQNW/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXGMJHWTMQI34NJZ4BHL3ZVF264AWBF2/ https://lore.kernel.org/kvm/158871401328.15589.17598154478222071285.stgit@gimli.home/ https://lore.kernel.org/kvm/158871570274.15589.10563806532874116326.stgit@gimli.home/ https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html https://lists.debian.org/debian-lts-announce/2020/10/msg00032.html https://lists.debian.org/debian-lts-announce/2020/10/msg00034.html http://www.openwall.com/lists/oss-security/2020/05/19/6 SuSE Security Announcement: openSUSE-SU-2020:0935 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00008.html SuSE Security Announcement: openSUSE-SU-2020:1153 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00009.html https://usn.ubuntu.com/4525-1/ https://usn.ubuntu.com/4526-1/ Common Vulnerability Exposure (CVE) ID: CVE-2020-0543 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DT2VKDMQ3I37NBNJ256A2EXR7OJHXXKZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NQZMOSHLTBBIECENNXA6M7DN5FEED4KI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T5OUM24ZC43G4IDT3JUCIHJTSDXJSK6Y/ https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html http://www.openwall.com/lists/oss-security/2020/07/14/5 SuSE Security Announcement: openSUSE-SU-2020:0818 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00025.html SuSE Security Announcement: openSUSE-SU-2020:0965 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00024.html SuSE Security Announcement: openSUSE-SU-2020:0985 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00031.html https://usn.ubuntu.com/4385-1/ https://usn.ubuntu.com/4387-1/ https://usn.ubuntu.com/4388-1/ https://usn.ubuntu.com/4389-1/ https://usn.ubuntu.com/4390-1/ https://usn.ubuntu.com/4391-1/ https://usn.ubuntu.com/4392-1/ https://usn.ubuntu.com/4393-1/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.