43 matches found
Important: kernel-livepatch-4.14.209-160.335
Issue Overview: A flaw was found in the Linux kernel's implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to...
SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0438-1)
The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2021-3348: Fixed a use-after-free in nbdaddsocket that could be triggered by local attackers with access to the nbd device via an I/O request at a certain point...
SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0434-1)
The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2021-3348: Fixed a use-after-free in nbdaddsocket that could be triggered by local attackers with access to the nbd device via an I/O request bnc1181504...
EulerOS Virtualization 3.0.1.0 : scsi-target-utils (EulerOS-SA-2019-1427)
According to the versions of the scsi-target-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or...
Oracle: Security Advisory (ELSA-2011-0332)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-2209-1 : tgt - double free
Emmanuel Bouillon discovered a double free in tgt, the Linux SCSI target user-space tools, which could lead to denial of service. The oldstable distribution lenny doesn't include tgt. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 2209-1] tgt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2209-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 02, 2011 http://www.debian.org/security/faq -...
DSA-2209-1 tgt - double free
Bulletin has no description...
DEBIAN-CVE-2011-0001
Double free vulnerability in the iscsirxhandler function usr/iscsi/iscsid.c in the tgt daemon tgtd in Linux SCSI target framework tgt before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...
Double free
Double free vulnerability in the iscsirxhandler function usr/iscsi/iscsid.c in the tgt daemon tgtd in Linux SCSI target framework tgt before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...
CVE-2011-0001
Double free vulnerability in the iscsirxhandler function usr/iscsi/iscsid.c in the tgt daemon tgtd in Linux SCSI target framework tgt before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...
Buffer overflow
Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...
CVE-2010-2221
Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...
scsi-target-utils: stack buffer overflow vulnerability
Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...
CVE-2010-2221
Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...
scsi-target-utils: format string vulnerability
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
CVE-2010-0743
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...
Format string
Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...