Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251786).
Список пакетов
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
kernel-default-3.0.101-108.195.1
kernel-default-base-3.0.101-108.195.1
kernel-default-devel-3.0.101-108.195.1
kernel-docs-3.0.101-108.195.1
kernel-ec2-3.0.101-108.195.1
kernel-ec2-base-3.0.101-108.195.1
kernel-ec2-devel-3.0.101-108.195.1
kernel-source-3.0.101-108.195.1
kernel-syms-3.0.101-108.195.1
kernel-trace-3.0.101-108.195.1
kernel-trace-base-3.0.101-108.195.1
kernel-trace-devel-3.0.101-108.195.1
kernel-xen-3.0.101-108.195.1
kernel-xen-base-3.0.101-108.195.1
kernel-xen-devel-3.0.101-108.195.1
Ссылки
- Link for SUSE-SU-2025:4507-1
- E-Mail link for SUSE-SU-2025:4507-1
- SUSE Security Ratings
- SUSE Bug 1251786
- SUSE CVE CVE-2023-53676 page
Описание
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() The function lio_target_nacl_info_show() uses sprintf() in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With enough iSCSI connections it's possible to overflow the buffer provided by configfs and corrupt the memory. This patch replaces sprintf() with sysfs_emit_at() that checks for buffer boundries.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE:kernel-default-3.0.101-108.195.1
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE:kernel-default-base-3.0.101-108.195.1
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE:kernel-default-devel-3.0.101-108.195.1
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE:kernel-docs-3.0.101-108.195.1
Ссылки
- CVE-2023-53676
- SUSE Bug 1251786
- SUSE Bug 1251787