Amazon Linux 2023：bpftool、kernel、kernel-devel (ALAS2023-2023-070)

high Nessus Plugin ID 173106

語言:

版本 1.22 Feb 14, 2026, 1:12 AM CVE (set "CVE" coverage to "CVE-2021-26341,CVE-2021-26401,CVE-2022-0001,CVE-2022-0002,CVE-2022-0171,CVE-2022-0185,CVE-2022-0492,CVE-2022-0494,CVE-2022-0500,CVE-2022-0742,CVE-2022-0847,CVE-2022-0854,CVE-2022-1015,CVE-2022-1016,CVE-2022-1055,CVE-2022-1158,CVE-2022-1184,CVE-2022-1199,CVE-2022-1263,CVE-2022-1353,CVE-2022-1462,CVE-2022-1679,CVE-2022-1729,CVE-2022-1789,CVE-2022-1852,CVE-2022-1973,CVE-2022-2078,CVE-2022-2585,CVE-2022-2586,CVE-2022-2588,CVE-2022-2602,CVE-2022-2663,CVE-2022-2905,CVE-2022-3028,CVE-2022-3061,CVE-2022-3176,CVE-2022-3303,CVE-2022-3435,CVE-2022-3523,CVE-2022-3524,CVE-2022-3534,CVE-2022-3543,CVE-2022-3566,CVE-2022-3567,CVE-2022-3606,CVE-2022-3623,CVE-2022-3643,CVE-2022-4139,CVE-2022-4378,CVE-2022-4379,CVE-2022-4842,CVE-2022-48619,CVE-2022-21123,CVE-2022-21125,CVE-2022-21166,CVE-2022-21505,CVE-2022-23222,CVE-2022-23825,CVE-2022-23960,CVE-2022-24958,CVE-2022-25636,CVE-2022-26365,CVE-2022-26373,CVE-2022-27223,CVE-2022-28693,CVE-2022-28893,CVE-2022-29156,CVE-2022-29581,CVE-2022-29582,CVE-2022-29900,CVE-2022-29901,CVE-2022-30594,CVE-2022-32250,CVE-2022-32981,CVE-2022-33740,CVE-2022-33741,CVE-2022-33742,CVE-2022-33743,CVE-2022-34494,CVE-2022-34495,CVE-2022-34918,CVE-2022-36123,CVE-2022-36879,CVE-2022-36946,CVE-2022-39188,CVE-2022-39189,CVE-2022-39190,CVE-2022-39842,CVE-2022-40307,CVE-2022-42328,CVE-2022-42329,CVE-2022-43750,CVE-2022-43945,CVE-2022-45869,CVE-2023-0179,CVE-2023-0394,CVE-2023-0459,CVE-2023-0461,CVE-2023-0469,CVE-2023-0590,CVE-2023-1637,CVE-2023-2019,CVE-2023-2177,CVE-2023-26544,CVE-2023-3111,CVE-2023-3357,CVE-2023-4387,CVE-2023-4459,CVE-2024-0562") CVSS metrics ("Cvssv4 score" set to 8.6. "Cvssv4 threat vector" set to "CVSS:4.0/E:A". "Cvssv4 vector" set to "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N") Detection (generated:current. updated detection logic) Exploit attributes ("Exploit framework canvas" changed from "True" to none. "Exploit framework core" changed from "True" to none. "Exploit framework metasploit" changed from "True" to none. "Exploited by malware" changed from "True" to none) Plugin metadata Plugin Feed: 202602140112
版本 1.20 Aug 22, 2024, 7:30 PM CISA reference Plugin Feed: 202408221930
版本 1.19 Aug 21, 2024, 9:41 PM CISA reference Plugin Feed: 202408212141
版本 1.18 Jun 27, 2024, 3:39 PM CISA reference Plugin Feed: 202406271539
版本 1.17 Jun 26, 2024, 11:05 PM CISA reference Plugin Feed: 202406262305
版本 1.16 Apr 11, 2024, 4:12 PM Exploit attributes ("Exploit framework canvas" set to "True") Exploit attributes ("Exploit framework core" set to "True") Exploit attributes ("Exploit framework metasploit" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202404111612
版本 1.14 Feb 7, 2024, 4:20 PM Exploit attributes ("Exploit framework canvas" set to "True". "Exploit framework core" set to "True". "Exploited by malware" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available". "Exploit framework metasploit" set to "True") Plugin Feed: 202402071620
版本 1.13 Feb 7, 2024, 2:22 PM Exploit attributes ("Exploit framework canvas" set to "True") Exploit attributes ("Exploit framework core" set to "True") Exploit attributes ("Exploit framework metasploit" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202402071422
版本 1.12 Jan 16, 2024, 5:39 PM CVE (Removed rejected CVE) Plugin Feed: 202401161739
版本 1.11 Jan 16, 2024, 3:43 PM CVE (Removed rejected CVE) Plugin Feed: 202401161543
版本 1.7 May 17, 2023, 11:10 PM CVE (set "CVE" coverage to "CVE-2023-2019") CVSS metrics ("CVSSv2 score" changed from 7.2 to 4.3. "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:M/C:N/I:N/A:C". "CVSSv3 score" changed from 8.8 to 4.4. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-34918" to "CVE-2023-2019") CVSSv2 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") CVSSv3 score source (changed from "CVE-2022-27223" to "CVE-2023-2019") CVSSv3 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") Detection Plugin metadata Plugin Feed: 202305172310
版本 1.6 May 14, 2023, 6:02 AM CVSS metrics ("CVSSv3 score" changed from 10.0 to 8.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H") CVSSv3 score source (changed from "CVE-2022-3643" to "CVE-2022-27223") Plugin Feed: 202305140602
版本 1.6 May 17, 2023, 9:12 PM CVE (set "CVE" coverage to "CVE-2023-2019") CVSS metrics ("CVSSv2 score" changed from 7.2 to 4.3) CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:M/C:N/I:N/A:C") CVSS metrics ("CVSSv3 score" changed from 8.8 to 4.4) CVSS metrics ("CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-34918" to "CVE-2023-2019") CVSSv2 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") CVSSv3 score source (changed from "CVE-2022-27223" to "CVE-2023-2019") CVSSv3 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") Detection Plugin metadata Plugin Feed: 202305172112
版本 1.5 May 14, 2023, 2:08 AM CVSS metrics ("CVSSv3 score" changed from 10.0 to 8.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H") CVSSv3 score source (changed from "CVE-2022-3643" to "CVE-2022-27223") Plugin Feed: 202305140208
版本 1.4 May 11, 2023, 8:47 PM CVSS metrics ("CVSSv3 score" changed from 10.0 to 8.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H") CVSSv3 score source (changed from "CVE-2022-3643" to "CVE-2022-27223") Plugin Feed: 202305112047
版本 1.3 May 2, 2023, 4:01 PM Regenerated based on advisory update Plugin Feed: 202305021601
版本 1.2 Mar 22, 2023, 11:53 PM CEA reference Plugin Feed: 202303222353
版本 1.1 Mar 22, 2023, 4:37 PM Exploit attributes ("Exploit framework metasploit" set to "True". "Exploit framework metasploit" set to "True". "Exploit framework metasploit" set to "True". "Exploited by malware" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available". "Exploited by malware" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202303221637
版本 1.0 Mar 22, 2023, 12:14 AM New Plugin Feed: 202303220014

* Changelogs are generally available for changes made after Nov 1, 2022