Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:1164-1

Опубликовано: 13 апр. 2021
Источник: suse-cvrf

Описание

Security update for open-iscsi

This update for open-iscsi fixes the following issues:

  • CVE-2020-17437: uIP Out-of-Bounds Write (bsc#1179908)
  • CVE-2020-17438: uIP Out-of-Bounds Write (bsc#1179908)
  • CVE-2020-13987: uIP Out-of-Bounds Read (bsc#1179908)
  • CVE-2020-13988: uIP Integer Overflow (bsc#1179908)
  • Enabled no-wait ('-W') iscsiadm option for iscsi login service (bsc#1173886, bsc#1183421)
  • Added the ability to perform async logins (bsc#1173886)

Список пакетов

Image SLES15-Azure-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-CHOST-HVM-BYOS
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-HVM-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-GCE-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-Azure
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-Azure-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-Azure-LI-BYOS-Production
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-EC2-HVM
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-EC2-HVM-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-GCE
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SAP-GCE-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-Azure-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-Azure-HPC-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-CHOST-BYOS-Azure
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-CHOST-BYOS-EC2
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-CHOST-BYOS-GCE
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-EC2-HPC-HVM-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-EC2-HVM-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-GCE-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-Azure
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-Azure-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-EC2-HVM
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-GCE
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAP-GCE-BYOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAPCAL-Azure
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAPCAL-EC2-HVM
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
Image SLES15-SP1-SAPCAL-GCE
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
SUSE Enterprise Storage 6
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise Server 15 SP1-BCL
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise Server 15 SP1-LTSS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise Server 15-LTSS
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise Server for SAP Applications 15
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Manager Proxy 4.0
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Manager Retail Branch Server 4.0
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1
SUSE Manager Server 4.0
iscsiuio-0.7.8.2-13.42.1
libopeniscsiusr0_2_0-2.0.876-13.42.1
open-iscsi-2.0.876-13.42.1
open-iscsi-devel-2.0.876-13.42.1

Ссылки

Описание

An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum in net/ipv4/uip.c.

Затронутые продукты
Image SLES15-Azure-BYOS:iscsiuio-0.7.8.2-13.42.1
Image SLES15-Azure-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Image SLES15-Azure-BYOS:open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-CHOST-HVM-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Ссылки

Описание

An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uip_process in net/ipv4/uip.c.

Затронутые продукты
Image SLES15-Azure-BYOS:iscsiuio-0.7.8.2-13.42.1
Image SLES15-Azure-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Image SLES15-Azure-BYOS:open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-CHOST-HVM-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Ссылки

Описание

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c.

Затронутые продукты
Image SLES15-Azure-BYOS:iscsiuio-0.7.8.2-13.42.1
Image SLES15-Azure-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Image SLES15-Azure-BYOS:open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-CHOST-HVM-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Ссылки

Описание

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly validate the total length of an incoming packet specified in its IP header, as well as the fragmentation offset value specified in the IP header. By crafting a packet with specific values of the IP header length and the fragmentation offset, attackers can write into the .bss section of the program (past the statically allocated buffer that is used for storing the fragmented data) and cause a denial of service in uip_reass() in uip.c, or possibly execute arbitrary code on some target architectures.

Затронутые продукты
Image SLES15-Azure-BYOS:iscsiuio-0.7.8.2-13.42.1
Image SLES15-Azure-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Image SLES15-Azure-BYOS:open-iscsi-2.0.876-13.42.1
Image SLES15-EC2-CHOST-HVM-BYOS:libopeniscsiusr0_2_0-2.0.876-13.42.1
Ссылки
Уязвимость SUSE-SU-2021:1164-1