OracleVM 3.4:xen (OVMSA-2020-0027)(已弃用)

medium Nessus 插件 ID 138415
全新!插件严重性现在使用 CVSS v3

计算的插件严重性默认已更新为使用 CVSS v3。没有 CVSS v3 分数的插件将回退到 CVSS v2 来计算严重性。可以在设置下拉列表中切换严重性显示首选项。

简介

This plugin has been deprecated.

描述

远程 OracleVM 系统缺少解决关键安全更新的必要补丁:

- BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO:xen commit=077233184260bd831e7c4afdd4aebb0bced6ee32

- BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO:传统 QEMU commit=6e676a4ba6bbd437a2a8dbfc3c6e591d920b013b

- BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- x86/vtd:隐藏对 SandyBridge IOMMU 的超级页支持 (Andrew Cooper) [Orabug: 31366846] (CVE-2018-12207) (CVE-2018-12207)

- BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO:xen commit=4cfb88a0f248605ca655e0609f0650c4563be653

- BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO:传统 QEMU commit=6e676a4ba6bbd437a2a8dbfc3c6e591d920b013b

- BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- x86/spec-ctrl:允许隐藏 RDRAND/RDSEED 功能 (Andrew Cooper) [Orabug: 31470704] (CVE-2020-0543) (CVE-2020-0543)

- cirrus:处理 cirrus_invalidate_region 中的负间距 (Wolfgang Bumiller) [Orabug:
31476272] (CVE-2017-18030)

- cirrus:修复 mode4and5 写入函数中的 oob 访问 (Gerd Hoffmann) [Orabug: 31476272] (CVE-2017-15289)

- BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO:xen commit=3206f3109cfd432d6e5bbffbcc9839f5b8ed1e44

- BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO:传统 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- x86/spec-ctrl:缓解特殊寄存器缓冲区数据采样侧信道 (Andrew Cooper) [Orabug: 31470704] (CVE-2020-0543) (CVE-2020-0543)

- x86/spec-ctrl:特殊寄存器缓冲区数据采样的 CPUID/MSR 定义 (Andrew Cooper) [Orabug:
31470704] (CVE-2020-0543) (CVE-2020-0543)

- BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO:xen commit=0bef1944b340a7ec3e93a20b472effa654f5ee16

- BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO:传统 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- x86/崩溃:kexec 崩溃时,在打印之前强制解锁控制台 (Igor Druzhinin) [Orabug: 31255931]

- BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO:xen commit=69a58ac753bd61961615f9208f8e1ee5ce946538

- BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO:传统 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- redtape:x86/tsx:TAA 回归 (Patrick Colp) [Orabug: 31240359]

OracleVM 已于 2020 年 7 月 16 日撤销此安全公告。

另见

https://oss.oracle.com/pipermail/oraclevm-errata/2020-July/000990.html

插件详情

严重性: Medium

ID: 138415

文件名: oraclevm_OVMSA-2020-0027.nasl

版本: 1.3

类型: local

发布时间: 2020/7/14

最近更新时间: 2020/7/17

依存关系: ssh_get_info.nasl

风险信息

CVSS 分数来源: CVE-2020-0543

VPR

风险因素: High

分数: 7.1

CVSS v2

风险因素: Low

基本分数: 2.1

时间分数: 1.6

矢量: AV:L/AC:L/Au:N/C:P/I:N/A:N

时间矢量: E:U/RL:OF/RC:C

CVSS v3

风险因素: Medium

基本分数: 5.5

时间分数: 4.8

矢量: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

时间矢量: E:U/RL:O/RC:C

漏洞信息

CPE: p-cpe:/a:oracle:vm:xen, p-cpe:/a:oracle:vm:xen-tools, cpe:/o:oracle:vm_server:3.4

必需的 KB 项: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

易利用性: No known exploits are available

补丁发布日期: 2020/7/13

漏洞发布日期: 2017/10/16

参考资料信息

CVE: CVE-2017-15289, CVE-2017-18030, CVE-2018-12207, CVE-2020-0543