5 matches found
The vulnerability in the drivers/target/target_core_xcopy.c file of the Linux operating system allows an attacker to gain access to read, modify, add, or delete data.
The vulnerability of the drivers/target/targetcorexcopy.c in the Linux operating system is related to incorrect pathname restrictions for directories with restricted access. Exploiting this vulnerability allows an attacker, acting remotely, to gain access to read, modify, add, or delete data usin...
openSUSE Security Update : the Linux Kernel (openSUSE-2021-75)
The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2020-29568: An issue was discovered in Xen through 4.14.x. Some OSes such as Linux, FreeBSD, and NetBSD are processing watch events using a single thread. If the even...
In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7 insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request aka CID-2896c93811e3. For example an attack can occur over a network if the attacker has access to one iSCSI LUN. The attacker gains control over file access because I/O operations are proxied via an attacker-selected backstore.
...
Linux kernel path traversal vulnerability (CNVD-2021-05132)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions prior to 5.10.7, which stems from insufficient identifier checking in drivers/target/targetcorexcopy.c, and can be...
Linux kernel 路径遍历漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions prior to 5.10.7, which stems from insufficient identifier checking in drivers/target/targetcorexcopy.c, and can be...