retired/CVE-2021-27364


1
2
3
4
5
6
7
8
9
10
11
12
13
14

Description: iscsi_if_recv_msg() allows non-root users to connect and send commands
References:
 https://bugzilla.redhat.com/show_bug.cgi?id=1930080
 https://www.openwall.com/lists/oss-security/2021/03/06/1
 https://bugzilla.suse.com/show_bug.cgi?id=1182717
Notes:
Bugs:
upstream: released (5.12-rc2) [688e8128b7a92df982709a4137ea4588d16f24aa]
5.10-upstream-stable: released (5.10.21) [c71edc5d2480774ec2fec62bb84064aed6d582bd]
4.19-upstream-stable: released (4.19.179) [ae84b246a76c4ace5997e5ca7e9fde3e1a526bc3]
4.9-upstream-stable: released (4.9.260) [a483236b41db0228bd4643d7cc0a4c51d33edd93]
sid: released (5.10.24-1)
4.19-buster-security: released (4.19.181-1)
4.9-stretch-security: released (4.9.258-1) [bugfix/all/scsi-iscsi-restrict-sessions-and-handles-to-admin-ca.patch]