OracleVM 3.4:xen (OVMSA-2020-0027) (已過時)

medium Nessus Plugin ID 138415

語系:

Synopsis

此外掛程式已過時。

描述

遠端 OracleVM 系統缺少可解決重大安全性更新的必要修補程式:

 - BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

 - BUILDINFO:xen commit=077233184260bd831e7c4afdd4aebb0bced6ee32

 - BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

 - BUILDINFO:傳統 QEMU commit=6e676a4ba6bbd437a2a8dbfc3c6e591d920b013b

 - BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

 - BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

 - x86/vtd: 隱藏 SandyBridge IOMMU 的超級頁面支援 (Andrew Cooper) [Orabug:31366846] (CVE-2018-12207) (CVE-2018-12207)

 - BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

 - BUILDINFO:xen commit=4cfb88a0f248605ca655e0609f0650c4563be653

 - BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

 - BUILDINFO:傳統 QEMU commit=6e676a4ba6bbd437a2a8dbfc3c6e591d920b013b

 - BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

 - BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

 - x86/spec-ctrl: 允許隱藏 RDRAND/RDSEED 功能 (Andrew Cooper) [Orabug:31470704] (CVE-2020-0543) (CVE-2020-0543)

 - cirrus:處理 cirrus_invalidate_region 中的負音高 (Wolfgang Bumiller) [Orabug:
 31476272] (CVE-2017-18030)

 - cirrus:修正 mode4and5 寫入函式中的 oob 存取 (Gerd Hoffmann) [Orabug:31476272] (CVE-2017-15289)

 - BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

 - BUILDINFO:xen commit=3206f3109cfd432d6e5bbffbcc9839f5b8ed1e44

 - BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

 - BUILDINFO:傳統 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

 - BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

 - BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

 - x86/spec-ctrl: 減輕特殊暫存器緩衝區資料採樣側通道 (Andrew Cooper) [Orabug:31470704] (CVE-2020-0543) (CVE-2020-0543)

 - x86/spec-ctrl: 特殊暫存器緩衝區資料取樣的 CPUID/MSR 定義 (Andrew Cooper) [Orabug:
 31470704] (CVE-2020-0543) (CVE-2020-0543)

 - BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

 - BUILDINFO:xen commit=0bef1944b340a7ec3e93a20b472effa654f5ee16

 - BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

 - BUILDINFO:傳統 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

 - BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

 - BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

 - x86/crash: kexec 損毀時在列印之前強制解除鎖定主控台 (Igor Druzhinin) [Orabug:31255931]

 - BUILDINFO:OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

 - BUILDINFO:xen commit=69a58ac753bd61961615f9208f8e1ee5ce946538

 - BUILDINFO:QEMU 上游 commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

 - BUILDINFO:傳統 QEMU commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

 - BUILDINFO:IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

 - BUILDINFO:SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

 - redtape:x86/tsx: TAA 回歸 (Patrick Colp) [Orabug:31240359]

此安全性公告已於 2020 年 7 月 16 日由 OracleVM 撤銷。

解決方案


另請參閱

https://oss.oracle.com/pipermail/oraclevm-errata/2020-July/000990.html

Plugin 詳細資訊

嚴重性: Medium

ID: 138415

檔案名稱: oraclevm_OVMSA-2020-0027.nasl

版本: 1.3

類型: local

已發布: 2020/7/14

已更新: 2020/7/17

風險資訊

VPR

風險因素: High

分數: 7.1

CVSS v2

風險因素: Low

基本分數: 2.1

時間分數: 1.6

媒介: AV:L/AC:L/Au:N/C:P/I:N/A:N

時間媒介: E:U/RL:OF/RC:C

CVSS 評分資料來源: CVE-2020-0543

CVSS v3

風險因素: Medium

基本分數: 5.5

時間分數: 4.8

媒介: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

時間媒介: E:U/RL:O/RC:C

弱點資訊

CPE: p-cpe:/a:oracle:vm:xen, p-cpe:/a:oracle:vm:xen-tools, cpe:/o:oracle:vm_server:3.4

必要的 KB 項目: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

可輕鬆利用: No known exploits are available

修補程式發佈日期: 2020/7/13

弱點發布日期: 2017/10/16

參考資訊

CVE: CVE-2017-15289, CVE-2017-18030, CVE-2018-12207, CVE-2020-0543