Описание
ELSA-2007-0497: Moderate: iscsi-initiator-utils security update (MODERATE)
[6.2.0.742-0.6]
- BZ 243726 fix two security flaws in open-iscsi (iscsid and logging)
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
iscsi-initiator-utils
6.2.0.742-0.6.el5
Oracle Linux i386
iscsi-initiator-utils
6.2.0.742-0.6.el5
Связанные CVE
Связанные уязвимости
Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить доступность защищаемой информации
usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before 2.0-865 uses a semaphore with insecure permissions (world-writable/world-readable) for managing log messages using shared memory, which allows local users to cause a denial of service (hang) by grabbing the semaphore.
usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before 2.0-865 uses a semaphore with insecure permissions (world-writable/world-readable) for managing log messages using shared memory, which allows local users to cause a denial of service (hang) by grabbing the semaphore.
usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before 2.0-865 uses a semaphore with insecure permissions (world-writable/world-readable) for managing log messages using shared memory, which allows local users to cause a denial of service (hang) by grabbing the semaphore.
usr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before 2.0-8 ...