偵測

RockyLinux 9:核心 (RLSA-2026:19568)

high Nessus Plugin ID 318043

語言:

概要

遠端 RockyLinux 主機缺少一個或多個安全性更新。

說明

遠端 RockyLinux 9 主機已安裝的套件會受到 RLSA-2026:19568 公告中提及的多個弱點影響。

 * kernel: net/sched:在超過 buffer_limit 時,使 cake_enqueue 傳回 NET_XMIT_CN (CVE-2025-39766)

 * kernel: scsi: qla2xxx:修正 purex 項目的不當釋放 (CVE-2025-68741)

 * 核心:libceph:使 decode_pool() 更能抵禦損毀的 OSDMaps (CVE-2025-71116)

 * 核心:libceph:防止 handle_auth_done()CVE-2026-22984 () 中潛在的越界讀取

 * 核心:libceph:取代 osdmap_apply_incremental()CVE-2026-22990 () 中過度熱心的BUG_ON

 * 核心:Linux 核心:由於未重設疏鬆讀取狀態,libceph OSD 用戶端發生拒絕服務 (CVE-2026-23136)

 * kernel: net/sched: cls_u32:使用 skb_header_pointer_careful() (CVE-2026-23204)

 * kernel:Linux kernel:流量控制模組 (act_ct) 中的釋放後使用弱點,可能導致拒絕服務或特權提升 (CVE-2026-23270)

 * 核心:Linux 核心 KVM:由於影子頁面表格項目處理不當,導致權限提升或拒絕服務 (CVE-2026-23401)

 * kernel:nfsd:修正 NFSv4.0 LOCK 重播快取中的堆積型溢位 (CVE-2026-31402)

 * 核心:can:raw:修正 raw_rcv() 中的 ro->uniq 釋放後使用 (CVE-2026-31532)

 * 核心:usbip:驗證 usbip_pack_ret_submit() 中的number_of_packets (CVE-2026-31607)

 * 核心:md/bitmap:修正write_page中由調整大小爭用 (CVE-2026-43163) 引起的 GPF

 * 核心:RDMA/umem:修正故障路徑中的雙重dma_buf_unpin (CVE-2026-43128)

 * 核心:Dirty Frag 是 Linux 核心 (CVE-2026-43284) 中一個新的通用本機權限提升 (LPE) 弱點

 * 核心:Fragnesia 是 ESP/XFRM 中 Dirty Frag 弱點的變體,會導致 Linux 核心中的本機權限提升 (LPE) 弱點 (CVE-2026-46300)

 * 核心:以無特權使用者身分讀取 root 擁有的檔案 (CVE-2026-46333)

Tenable 已直接從 RockyLinux 安全公告擷取前置描述區塊。

請注意,Nessus 並未測試這些問題,而是僅依據應用程式自我報告的版本號碼作出判斷。

解決方案

更新受影響的套件。

另請參閱

https://errata.rockylinux.org/RLSA-2026:19568

https://bugzilla.redhat.com/show_bug.cgi?id=2394648

https://bugzilla.redhat.com/show_bug.cgi?id=2425046

https://bugzilla.redhat.com/show_bug.cgi?id=2429602

https://bugzilla.redhat.com/show_bug.cgi?id=2432389

https://bugzilla.redhat.com/show_bug.cgi?id=2432400

https://bugzilla.redhat.com/show_bug.cgi?id=2439852

https://bugzilla.redhat.com/show_bug.cgi?id=2439931

https://bugzilla.redhat.com/show_bug.cgi?id=2448745

https://bugzilla.redhat.com/show_bug.cgi?id=2453803

https://bugzilla.redhat.com/show_bug.cgi?id=2454844

https://bugzilla.redhat.com/show_bug.cgi?id=2461107

https://bugzilla.redhat.com/show_bug.cgi?id=2461521

https://bugzilla.redhat.com/show_bug.cgi?id=2467059

https://bugzilla.redhat.com/show_bug.cgi?id=2467144

https://bugzilla.redhat.com/show_bug.cgi?id=2467771

https://bugzilla.redhat.com/show_bug.cgi?id=2477015

https://bugzilla.redhat.com/show_bug.cgi?id=2477802

Plugin 詳細資訊

嚴重性: High

ID: 318043

檔案名稱: rocky_linux_RLSA-2026-19568.nasl

版本: 1.2

類型: Local

已發布: 2026/5/30

已更新: 2026/6/1

支援的感應器: Nessus Agent, Continuous Assessment, Nessus

風險資訊

VPR

風險因素: Critical

分數: 10.0

CVSS v2

風險因素: Medium

基本分數: 6.8

時間性分數: 5.9

媒介: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS 評分資料來源: CVE-2026-46300

CVSS v3

風險因素: High

基本分數: 7.8

時間性分數: 7.5

媒介: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

時間媒介: CVSS:3.0/E:H/RL:O/RC:C

弱點資訊

CPE: p-cpe:/a:rocky:linux:kernel-rt-debug-modules-core, p-cpe:/a:rocky:linux:kernel-64k-modules-core, p-cpe:/a:rocky:linux:kernel-debuginfo-common-x86_64, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-modules, p-cpe:/a:rocky:linux:kernel-64k-core, p-cpe:/a:rocky:linux:kernel-64k-debug-modules, p-cpe:/a:rocky:linux:kernel-modules-core, p-cpe:/a:rocky:linux:kernel-modules-extra, p-cpe:/a:rocky:linux:rtla, p-cpe:/a:rocky:linux:kernel-rt-modules, p-cpe:/a:rocky:linux:kernel-tools-libs-devel, p-cpe:/a:rocky:linux:kernel-rt-64k-debuginfo, p-cpe:/a:rocky:linux:kernel-debuginfo-common-aarch64, p-cpe:/a:rocky:linux:kernel-zfcpdump, p-cpe:/a:rocky:linux:kernel-debug-devel, p-cpe:/a:rocky:linux:kernel-rt-64k-core, p-cpe:/a:rocky:linux:kernel-rt-core, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-devel, p-cpe:/a:rocky:linux:kernel-zfcpdump-debuginfo, p-cpe:/a:rocky:linux:python3-perf-debuginfo, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-modules-extra, p-cpe:/a:rocky:linux:kernel-debug-modules-extra, p-cpe:/a:rocky:linux:kernel-rt, p-cpe:/a:rocky:linux:kernel-abi-stablelists, p-cpe:/a:rocky:linux:kernel-modules, p-cpe:/a:rocky:linux:kernel-zfcpdump-modules-extra, p-cpe:/a:rocky:linux:kernel-64k-modules, p-cpe:/a:rocky:linux:kernel-rt-debug, p-cpe:/a:rocky:linux:kernel-zfcpdump-modules-core, p-cpe:/a:rocky:linux:kernel-debuginfo, p-cpe:/a:rocky:linux:libperf, p-cpe:/a:rocky:linux:kernel-debug-modules, p-cpe:/a:rocky:linux:kernel-debug-core, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-core, p-cpe:/a:rocky:linux:kernel-rt-64k, p-cpe:/a:rocky:linux:kernel-rt-64k-debug, p-cpe:/a:rocky:linux:kernel-rt-64k-devel, p-cpe:/a:rocky:linux:kernel-debug, p-cpe:/a:rocky:linux:kernel-rt-debug-modules-extra, p-cpe:/a:rocky:linux:kernel-debug-devel-matched, p-cpe:/a:rocky:linux:kernel-uki-virt, p-cpe:/a:rocky:linux:kernel-debuginfo-common-s390x, cpe:/o:rocky:linux:9, p-cpe:/a:rocky:linux:kernel-tools, p-cpe:/a:rocky:linux:kernel-64k-devel-matched, p-cpe:/a:rocky:linux:kernel-rt-debug-devel, p-cpe:/a:rocky:linux:kernel-rt-devel, p-cpe:/a:rocky:linux:python3-perf, p-cpe:/a:rocky:linux:kernel-devel, p-cpe:/a:rocky:linux:kernel-rt-debuginfo, p-cpe:/a:rocky:linux:kernel, p-cpe:/a:rocky:linux:kernel-rt-debug-core, p-cpe:/a:rocky:linux:kernel-64k-debug-devel, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-debuginfo, p-cpe:/a:rocky:linux:kernel-64k-modules-extra, p-cpe:/a:rocky:linux:kernel-rt-64k-modules, p-cpe:/a:rocky:linux:kernel-rt-modules-core, p-cpe:/a:rocky:linux:kernel-rt-modules-extra, p-cpe:/a:rocky:linux:libperf-debuginfo, p-cpe:/a:rocky:linux:kernel-devel-matched, p-cpe:/a:rocky:linux:kernel-core, p-cpe:/a:rocky:linux:kernel-64k-debug-core, p-cpe:/a:rocky:linux:kernel-zfcpdump-devel, p-cpe:/a:rocky:linux:perf-debuginfo, p-cpe:/a:rocky:linux:kernel-debug-debuginfo, p-cpe:/a:rocky:linux:kernel-rt-debug-debuginfo, p-cpe:/a:rocky:linux:kernel-64k-debug-debuginfo, p-cpe:/a:rocky:linux:kernel-64k-devel, p-cpe:/a:rocky:linux:kernel-tools-debuginfo, p-cpe:/a:rocky:linux:kernel-debuginfo-common-ppc64le, p-cpe:/a:rocky:linux:kernel-zfcpdump-modules, p-cpe:/a:rocky:linux:kernel-zfcpdump-devel-matched, p-cpe:/a:rocky:linux:perf, p-cpe:/a:rocky:linux:kernel-rt-debug-modules, p-cpe:/a:rocky:linux:kernel-64k-debug-devel-matched, p-cpe:/a:rocky:linux:kernel-rt-64k-debug-modules-core, p-cpe:/a:rocky:linux:kernel-64k-debug, p-cpe:/a:rocky:linux:kernel-rt-64k-modules-extra, p-cpe:/a:rocky:linux:kernel-tools-libs, p-cpe:/a:rocky:linux:rv, p-cpe:/a:rocky:linux:kernel-uki-virt-addons, p-cpe:/a:rocky:linux:kernel-rt-64k-modules-core, p-cpe:/a:rocky:linux:kernel-debug-uki-virt, p-cpe:/a:rocky:linux:kernel-64k-debug-modules-extra, p-cpe:/a:rocky:linux:kernel-64k, p-cpe:/a:rocky:linux:kernel-64k-debuginfo, p-cpe:/a:rocky:linux:kernel-64k-debug-modules-core, p-cpe:/a:rocky:linux:kernel-zfcpdump-core, p-cpe:/a:rocky:linux:kernel-debug-modules-core

必要的 KB 項目: Host/local_checks_enabled, Host/cpu, Host/RockyLinux/release, Host/RockyLinux/rpm-list

可被惡意程式利用: true

可輕鬆利用: Exploits are available

修補程式發佈日期: 2026/5/28

弱點發布日期: 2025/9/11

可惡意利用

Core Impact

Metasploit (xfrm-ESP Page-Cache Write via CVE-2026-43284)

參考資訊

CVE: CVE-2025-39766, CVE-2025-68741, CVE-2025-71116, CVE-2026-22984, CVE-2026-22990, CVE-2026-23136, CVE-2026-23204, CVE-2026-23270, CVE-2026-23401, CVE-2026-31402, CVE-2026-31532, CVE-2026-31607, CVE-2026-43128, CVE-2026-43163, CVE-2026-43284, CVE-2026-46300, CVE-2026-46333