Kernel Identification issue

Vulnerability Tests
1

Hi I am newbie, I would like some advices about a issue.

I am use Greebone Community Version 22.7.1.

greenbone_feeds
greenbone_feeds859×267 29 KB

I did a SCAN to a internal server (CentOS Linux release 7.9.2009 (Core)), it have a kernel 3.10.0-1160.99.1.el7.x86_64, but when I scan it shows me a issue.

Detection Result
Vulnerable package: kernel
Installed version: kernel-3.10.0-1160.el7
Fixed version: kernel-3.10.0-1160.45.1.el7

I think it could be a false positive or some problem at identification.

What can we do to solve this?

Thanks

Gerald

2

Hello,

and welcome to this community forum.

It seems the system in question is still having an outdated kernel (which is quite common on such operating systems like CentOS) in version kernel-3.10.0-1160.el7 installed.

As such installed but inactive kernel versions are still posing a risk for the system (e.g. the system is rebooted and the inactive kernel is loaded) it is reported accordingly.

There are currently two possibilities:

  1. Uninstall of the inactive kernel
  2. Accepting the risk originating from an inactive kernel by creating an override for the result in question
6 Likes
3

Thanks a lot, it solve the issue.

I delete all old kernels.

1 Like
4

Hi @cfi,

Is it possible to determine if the kernel version is inactive?

5

Could you please create a new topic / thread over at the Building from Source and Advanced Topics - Greenbone Community Forum category? Rationales:

  1. This topic has been already answered and marked as solved
  2. The question seems to be a new one unrelated to what the OP had asked
  3. This seems to be not VT specific
1 Like