[ubuntu/focal-updates] open-iscsi 2.0.874-7.1ubuntu6.4 (Accepted)

Ubuntu Archive Robot ubuntu-archive-robot at lists.canonical.com
Thu Jul 27 12:59:17 UTC 2023

open-iscsi (2.0.874-7.1ubuntu6.4) focal-security; urgency=medium

  * SECURITY UPDATE: Out-of-Bounds
    - debian/patches/CVE-2020-13987.patch: check for header length
      underflow during checksum calculation in iscsiuio/src/uip/uip.c.
    - CVE-2020-13987
  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2020-13988.patch: check for u8 overflow when
      processing TCP options.
    - CVE-2020-13988
  * SECURITY UPDATE: Buffer over read
    - debian/patches/CVE-2020-17437.patch: check for TCP urgent
      pointer past end of frame in iscsiuio/src/uip/uip.c.
    - CVE-2020-17437

Date: 2023-07-26 13:44:08.574856+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Focal-changes mailing list