EUVD-2010-0769

Malware in sbrugna...

EUVD-2011-0028

Malware in sbrugna...

[SECURITY] [DLA 3976-1] tgt security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3976-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 30, 2024 https://wiki.debian.org/LTS -...

SUSE CVE-2010-2221

Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...

kernel: SCSI target (LIO) write to any block on ILO backstore

A flaw was found in the Linux kernel’s implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to overwrite data on t...

kernel: SCSI target (LIO) write to any block on ILO backstore

A flaw was found in the Linux kernel’s implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to overwrite data on t...

Amazon Linux 2 : kernel (ALAS-2021-1600)

The version of kernel installed on the remote host is prior to 4.14.219-161.340. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1600 advisory. 2024-05-23: CVE-2023-1390 was added to this advisory. A use-after-free flaw was found in kernel/trace/ringbuffer.c...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0434-1)

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2021-3348: Fixed a use-after-free in nbdaddsocket that could be triggered by local attackers with access to the nbd device via an I/O request bnc1181504...

SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0438-1)

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2021-3348: Fixed a use-after-free in nbdaddsocket that could be triggered by local attackers with access to the nbd device via an I/O request at a certain point...

Important: kernel-livepatch-4.14.209-160.335

Issue Overview: A flaw was found in the Linux kernel's implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to...

EulerOS Virtualization 3.0.1.0 : scsi-target-utils (EulerOS-SA-2019-1427)

According to the versions of the scsi-target-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or...

Oracle: Security Advisory (ELSA-2011-0332)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 2209-1] tgt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2209-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 02, 2011 http://www.debian.org/security/faq -...

Double free

Double free vulnerability in the iscsirxhandler function usr/iscsi/iscsid.c in the tgt daemon tgtd in Linux SCSI target framework tgt before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...

CVE-2011-0001

Double free vulnerability in the iscsirxhandler function usr/iscsi/iscsid.c in the tgt daemon tgtd in Linux SCSI target framework tgt before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...

Buffer overflow

Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...

CVE-2010-2221

Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...

scsi-target-utils: stack buffer overflow vulnerability

Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...

CVE-2010-2221

Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils before 1.0.6, 2 iSCSI Enterprise Target aka iscsitarget or IET 1.4.20.1 and earlier, and 3 Generic SCSI Target Subsystem for Linux aka SCST or iscsi-scst 1.0.1.1 and earlie...

scsi-target-utils: format string vulnerability

Multiple format string vulnerabilities in isns.c in 1 Linux SCSI target framework aka tgt or scsi-target-utils 1.0.3, 0.9.5, and earlier and 2 iSCSI Enterprise Target aka iscsitarget 0.4.16 allow remote attackers to cause a denial of service tgtd daemon crash or possibly have unspecified other...