12 matches found
Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1932)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1953)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : open-iscsi (EulerOS-SA-2021-1932)
According to the version of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly...
SUSE: Security Advisory (SUSE-SU-2021:0663-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.1 : open-iscsi (EulerOS-SA-2021-1718)
According to the version of the open-iscsi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails...
SUSE SLES15 Security Update : open-iscsi (SUSE-SU-2021:1164-1)
This update for open-iscsi fixes the following issues : CVE-2020-17437: uIP Out-of-Bounds Write bsc1179908 CVE-2020-17438: uIP Out-of-Bounds Write bsc1179908 CVE-2020-13987: uIP Out-of-Bounds Read bsc1179908 CVE-2020-13988: uIP Integer Overflow bsc1179908 Enabled no-wait '-W' iscsiadm option for...
Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1718)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for open-iscsi (EulerOS-SA-2021-1762)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : open-iscsi (SUSE-SU-2021:0663-1)
This update for open-iscsi fixes the following issues : Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908 : check for TCP urgent pointer past end of frame check for u8 overflow when processing TCP options check for header length underflow during checksum...
SUSE-SU-2021:0663-1 Security update for open-iscsi
This update for open-iscsi fixes the following issues: Fixes for CVE-2019-17437, CVE-2020-17438, CVE-2020-13987 and CVE-2020-13988 bsc1179908: - check for TCP urgent pointer past end of frame - check for u8 overflow when processing TCP options - check for header length underflow during checksum...
CVE-2020-17438
An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly validate the total length of an incoming packet specified in its IP header, as well as the fragmentation offset value specified in the IP header. By crafti...
CVE-2020-17438
CVE-2020-17438 affects uIP 1.0 (used in Contiki 3.0 and other products). The IP reassembly code fails to validate the total packet length and fragmentation offset, enabling crafted IP headers to write past the static buffer into the .bss area, causing a denial of service in uip_reass() and potent...