SUSE: Security Advisory (SUSE-SU-2018:1784-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : various KMPs (SUSE-SU-2019:13999-1) (Spectre)

This update rebuilds missing kernel modules KMP to use 'retpolines' mitigations for Spectre Variant 2 CVE-2017-5715. Rebuilt KMP packages : cluster-network drbd gfs2 iscsitarget ocfs2 ofed oracleasm Note that Tenable Network Security has extracted the preceding description block directly from the...

openSUSE Security Update : iscsitarget (openSUSE-SU-2010:0604-1)

This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...

SuSE Update for kernel openSUSE-SU-2013:0925-1 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test $Id: gbsuse201309251.nasl 8448 2018-01-17 16:18:06Z teissa $ SuSE Update for kernel openSUSE-SU-2013:0925-1 kernel Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program ...

SuSE 11.1 Security Update : tgt (SAT Patch Number 4409)

This update of tgt fixes multiple bugs : - tgtadm user unbind broken bnc633111 - iscsitarget package not supported bnc513934 - iscsitarget vs. tgt and /etc/ietd.conf bnc598927 - tgt fix double free flaw bnc665415, CVE-2011-0001 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

SuSE 10 Security Update : iscsitarget (ZYPP Patch Number 7109)

This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...

iSCSI target Multiple Implementations iSNS Stack Buffer Overflow (CVE-2010-2221)

A stack buffer overflow vulnerability has been reported in iscsitarget, an open implementation of iSCSI Enterprise Target. The vulnerability is caused by missing boundary checks when handling SCN messages. Remote attacker can exploit this vulnerability by sending a malicious message to an iSCSI...

openSUSE Security Update : iscsitarget (openSUSE-SU-2010:0604-1)

This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...

openSUSE Security Update : iscsitarget (openSUSE-SU-2010:0604-1)

This update of iscscitarget/tgt fixes multiple overflows and a format string vulnerability : - CVE-2010-2221: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Buffer Errors CWE-119 - CVE-2010-0743: CVSS v2 Base Score: 5.0 MEDIUM AV:N/AC:L/Au:N/C:N/I:N/A:P: Format String Vulnerability...

Mandriva Update for iscsitarget MDVSA-2010:131 (iscsitarget)

Check for the Version of iscsitarget OpenVAS Vulnerability Test Mandriva Update for iscsitarget MDVSA-2010:131 iscsitarget Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Mandriva Update for iscsitarget MDVSA-2010:131 (iscsitarget)

Check for the Version of iscsitarget OpenVAS Vulnerability Test Mandriva Update for iscsitarget MDVSA-2010:131 iscsitarget Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CVE-2010-2221

CVE-2010-2221 covers multiple buffer overflow flaws in the iSNS stack used by isns.c across three target stacks: Linux SCSI target framework (tgt/scsi-target-utils) <1.0.6, iSCSI Enterprise Target (iscsitarget) <=1.4.20.1, and SCST (iscsi-scst)

Debian: Security Advisory (DSA-2042-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2042-1 (iscsitarget)

The remote host is missing an update to iscsitarget announced via advisory DSA 2042-1. OpenVAS Vulnerability Test $Id: deb20421.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2042-1 iscsitarget Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

[SECURITY] [DSA 2042-1] New iscsitarget packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------------- Debian Security Advisory DSA-2042-1 [email protected] http://www.debian.org/security/ Luciano Bello May 5th, 2010 http://www.debian.org/security/faq -...

Debian DSA-2042-1 : iscsitarget - format string

Florent Daigniere discovered multiple format string vulnerabilities in Linux SCSI target framework which is known as iscsitarget under Debian allow remote attackers to cause a denial of service in the ietd daemon. The flaw could be trigger by sending a carefully-crafted Internet Storage Name...

[SECURITY] [DSA 2042-1] New iscsitarget packages fix arbitrary code execution

--------------------------------------------------------------------------- Debian Security Advisory DSA-2042-1 [email protected] http://www.debian.org/security/ Luciano Bello May 5th, 2010 http://www.debian.org/security/faq -...

DSA-2042-1 iscsitarget - arbitrary code execution

Bulletin has no description...

CVE-2010-0743

CVE-2010-0743 affects scsi-target-utils (tgt) and iSCSI Enterprise Target (iscsitarget) via a format-string vulnerability in isns.c that can trigger a denial of service (tgtd daemon crash) or other impact. Vulnerable versions include tgt 1.0.3, 0.9.5 and earlier, and iscsitarget 0.4.16. The issue...

DTSA-106-1 iscsitarget - information disclosure

Bulletin has no description...