Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2021-03-27 08:16:15 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-03-27 08:16:15 +0100
commit: 4e63a4ab4edebe685df84abafdd3e9472b2bde9f (patch)
tree: c667ecfe5862ff31b8225fdefd069c2b978cf120 /retired/CVE-2021-27364
parent: f0cd31c07182b5779c7ff3acc216bb08cd881cf1 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2021-27364 b/retired/CVE-2021-27364
new file mode 100644
index 00000000..749bbb2e
--- /dev/null
+++ b/retired/CVE-2021-27364
@@ -0,0 +1,14 @@
+Description: iscsi_if_recv_msg() allows non-root users to connect and send commands
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1930080
+ https://www.openwall.com/lists/oss-security/2021/03/06/1
+ https://bugzilla.suse.com/show_bug.cgi?id=1182717
+Notes:
+Bugs:
+upstream: released (5.12-rc2) [688e8128b7a92df982709a4137ea4588d16f24aa]
+5.10-upstream-stable: released (5.10.21) [c71edc5d2480774ec2fec62bb84064aed6d582bd]
+4.19-upstream-stable: released (4.19.179) [ae84b246a76c4ace5997e5ca7e9fde3e1a526bc3]
+4.9-upstream-stable: released (4.9.260) [a483236b41db0228bd4643d7cc0a4c51d33edd93]
+sid: released (5.10.24-1)
+4.19-buster-security: released (4.19.181-1)
+4.9-stretch-security: released (4.9.258-1) [bugfix/all/scsi-iscsi-restrict-sessions-and-handles-to-admin-ca.patch]
author	Salvatore Bonaccorso <carnil@debian.org>	2021-03-27 08:16:15 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-03-27 08:16:15 +0100
commit	4e63a4ab4edebe685df84abafdd3e9472b2bde9f (patch)
tree	c667ecfe5862ff31b8225fdefd069c2b978cf120 /retired/CVE-2021-27364
parent	f0cd31c07182b5779c7ff3acc216bb08cd881cf1 (diff)