RHEL 7:内核 (RHSA-2017:1842) (Stack Clash)

high Nessus 插件 ID 102143
全新!插件严重性现在使用 CVSS v3

计算的插件严重性默认已更新为使用 CVSS v3。没有 CVSS v3 分数的插件将回退到 CVSS v2 来计算严重性。可以在设置下拉列表中切换严重性显示首选项。

简介

远程 Red Hat 主机缺少一个或多个安全更新。

描述

内核的更新现在可用于 Red Hat Enterprise Linux 7。Red Hat 产品安全团队将此更新评级为具有重要安全影响。可从“参考”部分中的 CVE 链接获取通用漏洞评分系统 (CVSS) 基本分数,其针对每个漏洞给出了详细的严重性等级。内核程序包中包含 Linux 内核,后者是任何 Linux 操作系统的核心。安全修复:* 在 Linux 内核中发现释放后使用缺陷,会使 L2TPv3 IP 封装特性中出现争用条件。本地用户可利用此缺陷提升其权限或造成系统崩溃。(CVE-2016-10200,重要)* 已发现 type->match 为空时,可在 keyring.c 的 keyring_search_iterator 中触发的缺陷。本地用户可利用此缺陷导致系统崩溃,或提升其权限。(CVE-2017-2647,重要)* 已发现 Linux 内核中的 NFSv4 服务器在处理 NFSv4 pNFS LAYOUTGET 和 GETDEVICEINFO 操作数时,未正确验证布局类型。远程攻击者可利用此缺陷使系统发生软死锁,并导致拒绝服务。(CVE-2017-8797,重要)此更新也会修复多个中等和低危影响的安全问题:* CVE-2015-8839, CVE-2015-8970, CVE-2016-9576, CVE-2016-7042, CVE-2016-7097, CVE-2016-8645, CVE-2016-9576, CVE-2016-9588, CVE-2016-9806, CVE-2016-10088, CVE-2016-10147, CVE-2017-2596, CVE-2017-2671, CVE-2017-5970, CVE-2017-6001, CVE-2017-6951, CVE-2017-7187, CVE-2017-7616, CVE-2017-7889, CVE-2017-8890, CVE-2017-9074, CVE-2017-8890, CVE-2017-9075, CVE-2017-8890, CVE-2017-9076, CVE-2017-8890, CVE-2017-9077, CVE-2017-9242, CVE-2014-7970, CVE-2014-7975, CVE-2016-6213, CVE-2016-9604, CVE-2016-9685 可在“参考”部分链接的版本说明文档中查阅有关这些问题的文档。Red Hat 在此感谢 Igor Redko (Virtuozzo) 和 Andrey Ryabinin (Virtuozzo) 报告 CVE-2017-2647;Igor Redko (Virtuozzo) 和 Vasily Averin (Virtuozzo) 报告 CVE-2015-8970;Marco Grassi 报告 CVE-2016-8645;以及 Dmitry Vyukov (Google Inc.) 报告 CVE-2017-2596。CVE-2016-7042 问题由 Ondrej Kozina (Red Hat) 发现;CVE-2016-7097 问题由 Andreas Gruenbacher (Red Hat) 和 Jan Kara (SUSE) 发现;CVE-2016-6213 和 CVE-2016-9685 问题由 Qian Cai (Red Hat) 发现;以及 CVE-2016-9604 问题由 David Howells (Red Hat) 发现。其他更改:如需有关此发行版本的其他详细变更信息,请参阅可从“参考”部分链接的 Red Hat Enterprise Linux 7.4 版本说明。

解决方案

更新受影响的程序包。

另见

http://www.nessus.org/u?3395ff0b

https://access.redhat.com/errata/RHSA-2017:1842

https://access.redhat.com/security/cve/cve-2014-7970

https://access.redhat.com/security/cve/cve-2014-7975

https://access.redhat.com/security/cve/cve-2015-8839

https://access.redhat.com/security/cve/cve-2015-8970

https://access.redhat.com/security/cve/cve-2016-6213

https://access.redhat.com/security/cve/cve-2016-7042

https://access.redhat.com/security/cve/cve-2016-7097

https://access.redhat.com/security/cve/cve-2016-8645

https://access.redhat.com/security/cve/cve-2016-9576

https://access.redhat.com/security/cve/cve-2016-9588

https://access.redhat.com/security/cve/cve-2016-9604

https://access.redhat.com/security/cve/cve-2016-9685

https://access.redhat.com/security/cve/cve-2016-9806

https://access.redhat.com/security/cve/cve-2016-10088

https://access.redhat.com/security/cve/cve-2016-10147

https://access.redhat.com/security/cve/cve-2016-10200

https://access.redhat.com/security/cve/cve-2016-10741

https://access.redhat.com/security/cve/cve-2017-2584

https://access.redhat.com/security/cve/cve-2017-2596

https://access.redhat.com/security/cve/cve-2017-2647

https://access.redhat.com/security/cve/cve-2017-2671

https://access.redhat.com/security/cve/cve-2017-5551

https://access.redhat.com/security/cve/cve-2017-5970

https://access.redhat.com/security/cve/cve-2017-6001

https://access.redhat.com/security/cve/cve-2017-6951

https://access.redhat.com/security/cve/cve-2017-7187

https://access.redhat.com/security/cve/cve-2017-7495

https://access.redhat.com/security/cve/cve-2017-7616

https://access.redhat.com/security/cve/cve-2017-7889

https://access.redhat.com/security/cve/cve-2017-8797

https://access.redhat.com/security/cve/cve-2017-8890

https://access.redhat.com/security/cve/cve-2017-9074

https://access.redhat.com/security/cve/cve-2017-9075

https://access.redhat.com/security/cve/cve-2017-9076

https://access.redhat.com/security/cve/cve-2017-9077

https://access.redhat.com/security/cve/cve-2017-9242

https://access.redhat.com/security/cve/cve-2017-1000379

插件详情

严重性: High

ID: 102143

文件名: redhat-RHSA-2017-1842.nasl

版本: 3.19

类型: local

代理: unix

发布时间: 2017/8/3

最近更新时间: 2019/10/24

依存关系: ssh_get_info.nasl, linux_alt_patch_detect.nasl

风险信息

VPR

风险因素: High

分数: 7.4

CVSS v2

风险因素: High

基本分数: 7.8

时间分数: 6.1

矢量: AV:N/AC:L/Au:N/C:N/I:N/A:C

时间矢量: E:POC/RL:OF/RC:C

CVSS v3

风险因素: High

基本分数: 7.8

时间分数: 7

矢量: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

时间矢量: E:P/RL:O/RC:C

漏洞信息

CPE: p-cpe:/a:redhat:enterprise_linux:kernel, p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists, p-cpe:/a:redhat:enterprise_linux:kernel-debug, p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo, p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel, p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo, p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-s390x, p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common-x86_64, p-cpe:/a:redhat:enterprise_linux:kernel-devel, p-cpe:/a:redhat:enterprise_linux:kernel-doc, p-cpe:/a:redhat:enterprise_linux:kernel-headers, p-cpe:/a:redhat:enterprise_linux:kernel-kdump, p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo, p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel, p-cpe:/a:redhat:enterprise_linux:kernel-tools, p-cpe:/a:redhat:enterprise_linux:kernel-tools-debuginfo, p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs, p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel, p-cpe:/a:redhat:enterprise_linux:perf, p-cpe:/a:redhat:enterprise_linux:perf-debuginfo, p-cpe:/a:redhat:enterprise_linux:python-perf, p-cpe:/a:redhat:enterprise_linux:python-perf-debuginfo, cpe:/o:redhat:enterprise_linux:7, cpe:/o:redhat:enterprise_linux:7.4, cpe:/o:redhat:enterprise_linux:7.5, cpe:/o:redhat:enterprise_linux:7.6, cpe:/o:redhat:enterprise_linux:7.7

必需的 KB 项: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

可利用: true

易利用性: Exploits are available

补丁发布日期: 2017/8/1

漏洞发布日期: 2014/10/13

参考资料信息

CVE: CVE-2014-7970, CVE-2014-7975, CVE-2015-8839, CVE-2015-8970, CVE-2016-10088, CVE-2016-10147, CVE-2016-10200, CVE-2016-10741, CVE-2016-6213, CVE-2016-7042, CVE-2016-7097, CVE-2016-8645, CVE-2016-9576, CVE-2016-9588, CVE-2016-9604, CVE-2016-9685, CVE-2016-9806, CVE-2017-1000379, CVE-2017-2584, CVE-2017-2596, CVE-2017-2647, CVE-2017-2671, CVE-2017-5551, CVE-2017-5970, CVE-2017-6001, CVE-2017-6951, CVE-2017-7187, CVE-2017-7495, CVE-2017-7616, CVE-2017-7889, CVE-2017-8797, CVE-2017-8890, CVE-2017-9074, CVE-2017-9075, CVE-2017-9076, CVE-2017-9077, CVE-2017-9242

RHSA: 2017:1842