Test ID:	1.3.6.1.4.1.25623.1.1.2.2019.1229
Category:	Huawei EulerOS Local Security Checks
Title:	Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1229)
Summary:	The remote host is missing an update for the Huawei EulerOS 'kernel' package(s) announced via the EulerOS-SA-2019-1229 advisory.
Description:	Summary: The remote host is missing an update for the Huawei EulerOS 'kernel' package(s) announced via the EulerOS-SA-2019-1229 advisory. Vulnerability Insight: The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/mballoc.c:ext4_process_freed_data() function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted ext4 image to cause a kernel panic.(CVE-2018-1092) The resv_map_release function in mm/hugetlb.c in the Linux kernel, through 4.15.7, allows local users to cause a denial of service (BUG) via a crafted application that makes mmap system calls and has a large pgoff argument to the remap_file_pages system call.(CVE-2018-7740) Affected Software/OS: 'kernel' package(s) on Huawei EulerOS Virtualization 2.5.4. Solution: Please install the updated package(s). CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-1092 Debian Security Information: DSA-4187 (Google Search) https://www.debian.org/security/2018/dsa-4187 Debian Security Information: DSA-4188 (Google Search) https://www.debian.org/security/2018/dsa-4188 http://openwall.com/lists/oss-security/2018/03/29/1 https://bugzilla.kernel.org/show_bug.cgi?id=199179 https://bugzilla.kernel.org/show_bug.cgi?id=199275 https://bugzilla.redhat.com/show_bug.cgi?id=1560777 https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=8e4b5eae5decd9dfe5a4ee369c22028f90ab4c44 https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html RedHat Security Advisories: RHSA-2018:2948 https://access.redhat.com/errata/RHSA-2018:2948 RedHat Security Advisories: RHSA-2018:3083 https://access.redhat.com/errata/RHSA-2018:3083 RedHat Security Advisories: RHSA-2018:3096 https://access.redhat.com/errata/RHSA-2018:3096 https://usn.ubuntu.com/3676-1/ https://usn.ubuntu.com/3676-2/ https://usn.ubuntu.com/3677-1/ https://usn.ubuntu.com/3677-2/ https://usn.ubuntu.com/3678-1/ https://usn.ubuntu.com/3678-2/ https://usn.ubuntu.com/3678-3/ https://usn.ubuntu.com/3678-4/ https://usn.ubuntu.com/3754-1/ Common Vulnerability Exposure (CVE) ID: CVE-2018-7740 BugTraq ID: 103316 http://www.securityfocus.com/bid/103316 https://usn.ubuntu.com/3910-1/ https://usn.ubuntu.com/3910-2/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.