Lucene search
K

105 matches found

cloudfoundry
cloudfoundry
added 2021/02/10 12:0 a.m.35 views

USN-4694-1: Linux kernel vulnerability | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Description It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least...

8.1CVSS7.9AI score0.06563EPSS
Exploits0Affected Software1
ubuntu
ubuntu
added 2021/02/05 1:4 a.m.166 views

USN-4711-1: Linux kernel vulnerabilities

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

8.1CVSS6.4AI score0.06563EPSS
Exploits0
osv
osv
added 2021/02/05 1:4 a.m.8 views

USN-4711-1 linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

8.1CVSS6.7AI score0.06563EPSS
Exploits0References3
openvas
openvas
added 2021/02/04 12:0 a.m.33 views

Fedora: Security Advisory for tcmu-runner (FEDORA-2021-4a91649cf3)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.3AI score0.06563EPSS
Exploits0References2
fedora
fedora
added 2021/02/03 1:55 a.m.45 views

[SECURITY] Fedora 33 Update: tcmu-runner-1.5.2-7.fc33

A daemon that handles the complexity of the LIO kernel target's userspace passthrough interface TCMU. It presents a C plugin API for extension modu les that handle SCSI requests in ways not possible or suitable to be handled by LIO's in-kernel backstores...

8.1CVSS1.8AI score0.06563EPSS
Exploits0
ubuntu
ubuntu
added 2021/02/02 7:23 a.m.306 views

USN-4709-1: Linux kernel vulnerabilities

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

9.3CVSS6.9AI score0.06563EPSS
Exploits3
osv
osv
added 2021/02/02 6:17 a.m.7 views

USN-4713-1 linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerability

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

8.1CVSS6.7AI score0.06563EPSS
Exploits0References2
ubuntu
ubuntu
added 2021/02/02 6:17 a.m.241 views

USN-4713-1: Linux kernel vulnerability

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

8.1CVSS6.7AI score0.06563EPSS
Exploits0
nessus
nessus
added 2021/02/02 12:0 a.m.53 views

Debian DSA-4843-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2020-27815 A flaw was reported in the JFS filesystem code allowing a local attacker with the ability to set extended attributes to cause a denial...

8.8CVSS7.4AI score0.06563EPSS
Exploits5References29
nessus
nessus
added 2021/02/01 12:0 a.m.273 views

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9024)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9024 advisory. 4.14.35-2025.404.1.2.el7 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280 Tenable has extracted the preceding descripti...

8.8CVSS6.8AI score0.06563EPSS
Exploits0References4
nessus
nessus
added 2021/01/30 12:0 a.m.93 views

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9023)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9023 advisory. 4.14.35-2025.404.1.2 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280 Tenable has extracted the preceding description...

8.8CVSS6.8AI score0.06563EPSS
Exploits0References4
openvas
openvas
added 2021/01/29 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-4711-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.3AI score0.06563EPSS
Exploits0References2
openvas
openvas
added 2021/01/29 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-4713-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.3AI score0.06563EPSS
Exploits0References2
nessus
nessus
added 2021/01/28 12:0 a.m.52 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4709-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4709-1 advisory. It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An...

9.3CVSS7AI score0.06563EPSS
Exploits3References6
nessus
nessus
added 2021/01/28 12:0 a.m.48 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4711-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4711-1 advisory. It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY...

8.1CVSS6.6AI score0.06563EPSS
Exploits0References3
nessus
nessus
added 2021/01/28 12:0 a.m.69 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerability (USN-4713-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4713-1 advisory. It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An...

8.1CVSS6.8AI score0.06563EPSS
Exploits0References2
ubuntu
ubuntu
added 2021/01/26 8:25 a.m.122 views

LSN-0074-1: Kernel Live Patch Security Notice

Elena Petrova discovered that the pin controller device tree implementation in the Linux kernel did not properly handle string references. A local attacker could use this to expose sensitive information kernel memory. CVE-2020-0427 Andy Nguyen discovered that the Bluetooth A2MP implementation in...

8.1CVSS7.1AI score0.06563EPSS
Exploits7
nessus
nessus
added 2021/01/25 12:0 a.m.38 views

openSUSE Security Update : tcmu-runner (openSUSE-2021-97)

This update for tcmu-runner fixes the following issues : - CVE-2021-3139: Fixed a LIO security issue bsc1180676. This update was imported from the SUSE:SLE-15-SP2:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

8.1CVSS7.6AI score0.02649EPSS
Exploits0References2
mageia
mageia
added 2021/01/20 10:45 p.m.59 views

Updated kernel packages fix security vulnerability

This kernel update is based on upstream 5.10.8 and fixes at least the following security issue: SCSI “EXTENDED COPY” XCOPY requests sent to a Linux SCSI target LIO allow an attacker to read or write anywhere on any LIO backstore configured on the host, provided the attacker has access to one LUN...

8.1CVSS1AI score0.06563EPSS
Exploits0References4
osv
osv
added 2021/01/20 3:22 p.m.6 views

OPENSUSE-SU-2021:0128-1 Security update for tcmu-runner

This update for tcmu-runner fixes the following issue: - CVE-2021-3139: Fixed a LIO security issue bsc1180676. This update was imported from the SUSE:SLE-15:Update update project...

8.1CVSS8.1AI score0.02649EPSS
Exploits0References3
Rows per page
Query Builder