Project

General

Profile

Actions

Bug #2867

closed

iscsit remote vulnerability

Added by Dan McDonald about 9 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Immediate
Assignee:
Category:
kernel
Start date:
2012-06-11
Due date:
% Done:

80%

Estimated time:
Difficulty:
Medium
Tags:
security
Gerrit CR:

Description

Certain well-formed commands can cause the iscsit module to kernel panic.

We have a well-tested solution. Because it's a security vulnerability, I do not wish to get into details until AFTER the fix is integrated.

Actions #1

Updated by Dan McDonald over 7 years ago

  • Assignee changed from Steve Ma to Dan McDonald
Actions #2

Updated by Garrett D'Amore about 7 years ago

What's the status of this Dan? You submitted this a long time ago. Perhaps this was fixed in 1872? Or 653?

Actions #3

Updated by Yuri Pankov almost 7 years ago

Not fixed, just checked.

Actions #4

Updated by Dan McDonald over 3 years ago

  • Status changed from New to Closed

Closing as duplicate of #8742.

Actions

Also available in: Atom PDF