| 2013-05-30 19:57:31 |
John Johansen |
bug |
|
|
added bug |
| 2013-05-30 19:57:33 |
John Johansen |
tags |
|
kernel-cve-tracking-bug |
|
| 2013-05-30 19:57:34 |
John Johansen |
information type |
Public |
Public Security |
|
| 2013-05-30 19:57:35 |
John Johansen |
cve linked |
|
2013-2850 |
|
| 2013-05-30 19:57:45 |
John Johansen |
nominated for series |
|
Ubuntu Saucy |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Saucy) |
|
| 2013-05-30 19:57:46 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Saucy) |
|
| 2013-05-30 19:57:48 |
John Johansen |
nominated for series |
|
Ubuntu Raring |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Raring) |
|
| 2013-05-30 19:57:49 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Raring) |
|
| 2013-05-30 19:57:51 |
John Johansen |
nominated for series |
|
Ubuntu Quantal |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Quantal) |
|
| 2013-05-30 19:57:52 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Quantal) |
|
| 2013-05-30 19:57:55 |
John Johansen |
nominated for series |
|
Ubuntu Precise |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Precise) |
|
| 2013-05-30 19:57:56 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Precise) |
|
| 2013-05-30 19:57:58 |
John Johansen |
nominated for series |
|
Ubuntu Lucid |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Lucid) |
|
| 2013-05-30 19:58:00 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Lucid) |
|
| 2013-05-30 19:58:14 |
John Johansen |
linux-armadaxp (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 19:58:18 |
John Johansen |
linux-armadaxp (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:58:20 |
John Johansen |
linux-armadaxp (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:58:23 |
John Johansen |
linux-ec2 (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-05-30 19:58:26 |
John Johansen |
linux-ec2 (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:58:30 |
John Johansen |
linux-ec2 (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 19:58:33 |
John Johansen |
linux-ec2 (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:58:35 |
John Johansen |
linux-lts-quantal (Ubuntu Precise): status |
New |
Fix Committed |
|
| 2013-05-30 19:58:37 |
John Johansen |
linux-lts-quantal (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 19:58:41 |
John Johansen |
linux-lts-quantal (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:58:44 |
John Johansen |
linux-lts-quantal (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 19:58:47 |
John Johansen |
linux-lts-quantal (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:58:50 |
John Johansen |
linux-mvl-dove (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-05-30 19:58:54 |
John Johansen |
linux-mvl-dove (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:58:58 |
John Johansen |
linux-mvl-dove (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 19:59:02 |
John Johansen |
linux-mvl-dove (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:59:05 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-05-30 19:59:09 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:59:14 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 19:59:18 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:59:21 |
John Johansen |
linux (Ubuntu Precise): status |
New |
Fix Committed |
|
| 2013-05-30 19:59:24 |
John Johansen |
linux (Ubuntu Quantal): status |
New |
Fix Committed |
|
| 2013-05-30 19:59:27 |
John Johansen |
linux (Ubuntu Raring): status |
New |
Fix Committed |
|
| 2013-05-30 19:59:30 |
John Johansen |
linux-ti-omap4 (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 19:59:32 |
John Johansen |
linux-fsl-imx51 (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-05-30 19:59:35 |
John Johansen |
linux-fsl-imx51 (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:59:39 |
John Johansen |
linux-fsl-imx51 (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 19:59:44 |
John Johansen |
linux-fsl-imx51 (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 19:59:47 |
John Johansen |
linux-lts-raring (Ubuntu Precise): status |
New |
Fix Committed |
|
| 2013-05-30 19:59:51 |
John Johansen |
linux-lts-raring (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 19:59:54 |
John Johansen |
linux-lts-raring (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-05-30 19:59:59 |
John Johansen |
linux-lts-raring (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-05-30 20:00:03 |
John Johansen |
linux-lts-raring (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-05-30 20:00:06 |
John Johansen |
description |
Placeholder |
The flaw is an unauthenticated remote heap buffer overflow in the Linux iSCSI target subsystem. If there is a target configured and listening on the network, a remote attacker can corrupt heap memory, and almost certainly gain kernel execution control. I only got as far as proving it would Oops the server. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue, |
|
| 2013-05-30 20:00:09 |
John Johansen |
linux-armadaxp (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:00:12 |
John Johansen |
linux-armadaxp (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:00:16 |
John Johansen |
linux-armadaxp (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:00:19 |
John Johansen |
linux-armadaxp (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:00:21 |
John Johansen |
linux-armadaxp (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:00:24 |
John Johansen |
linux-ec2 (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:00:27 |
John Johansen |
linux-ec2 (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:00:31 |
John Johansen |
linux-ec2 (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:00:33 |
John Johansen |
linux-ec2 (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:00:36 |
John Johansen |
linux-ec2 (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:00:39 |
John Johansen |
linux-lts-quantal (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:00:41 |
John Johansen |
linux-lts-quantal (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:00:44 |
John Johansen |
linux-lts-quantal (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:00:46 |
John Johansen |
linux-lts-quantal (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:00:50 |
John Johansen |
linux-lts-quantal (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:00:53 |
John Johansen |
linux-mvl-dove (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:00:56 |
John Johansen |
linux-mvl-dove (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 20:00:59 |
John Johansen |
linux-mvl-dove (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:01:01 |
John Johansen |
linux-mvl-dove (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:01:04 |
John Johansen |
linux-mvl-dove (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:01:06 |
John Johansen |
linux-mvl-dove (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:01:09 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:01:12 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 20:01:16 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:01:19 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:01:23 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:01:26 |
John Johansen |
linux-lts-backport-maverick (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:01:28 |
John Johansen |
linux (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:01:31 |
John Johansen |
linux (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:01:34 |
John Johansen |
linux (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:01:36 |
John Johansen |
linux (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:01:38 |
John Johansen |
linux (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:01:42 |
John Johansen |
linux-ti-omap4 (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:01:44 |
John Johansen |
linux-ti-omap4 (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:01:46 |
John Johansen |
linux-ti-omap4 (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:01:49 |
John Johansen |
linux-ti-omap4 (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:01:51 |
John Johansen |
linux-ti-omap4 (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:01:54 |
John Johansen |
linux-fsl-imx51 (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:01:56 |
John Johansen |
linux-fsl-imx51 (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-05-30 20:02:50 |
John Johansen |
linux-fsl-imx51 (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:02:53 |
John Johansen |
linux-fsl-imx51 (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:02:55 |
John Johansen |
linux-fsl-imx51 (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:02:58 |
John Johansen |
linux-fsl-imx51 (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-30 20:03:01 |
John Johansen |
linux-lts-raring (Ubuntu Precise): importance |
Undecided |
High |
|
| 2013-05-30 20:03:04 |
John Johansen |
linux-lts-raring (Ubuntu Lucid): importance |
Undecided |
High |
|
| 2013-05-30 20:03:06 |
John Johansen |
linux-lts-raring (Ubuntu Saucy): importance |
Undecided |
High |
|
| 2013-05-30 20:03:08 |
John Johansen |
linux-lts-raring (Ubuntu Quantal): importance |
Undecided |
High |
|
| 2013-05-30 20:04:13 |
John Johansen |
linux-lts-raring (Ubuntu Raring): importance |
Undecided |
High |
|
| 2013-05-31 05:53:56 |
John Johansen |
linux-lts-quantal (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2013-05-31 05:54:00 |
John Johansen |
linux (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2013-05-31 05:54:02 |
John Johansen |
linux (Ubuntu Quantal): status |
Fix Committed |
Fix Released |
|
| 2013-05-31 05:54:05 |
John Johansen |
linux (Ubuntu Raring): status |
Fix Committed |
Fix Released |
|
| 2013-06-02 20:53:02 |
Taowa |
linux (Ubuntu Saucy): status |
New |
Confirmed |
|
| 2013-06-03 17:47:46 |
John Johansen |
linux-armadaxp (Ubuntu Precise): status |
New |
Fix Committed |
|
| 2013-06-03 17:47:50 |
John Johansen |
linux-armadaxp (Ubuntu Quantal): status |
New |
Fix Released |
|
| 2013-06-03 17:47:54 |
John Johansen |
linux-ec2 (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-06-03 17:47:57 |
John Johansen |
linux (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-06-03 17:48:00 |
John Johansen |
linux-ti-omap4 (Ubuntu Precise): status |
New |
Fix Committed |
|
| 2013-06-03 17:48:04 |
John Johansen |
linux-ti-omap4 (Ubuntu Saucy): status |
New |
Fix Committed |
|
| 2013-06-03 17:48:07 |
John Johansen |
linux-ti-omap4 (Ubuntu Quantal): status |
New |
Fix Committed |
|
| 2013-06-03 17:48:09 |
John Johansen |
linux-ti-omap4 (Ubuntu Raring): status |
New |
Fix Committed |
|
| 2013-06-03 17:48:11 |
John Johansen |
linux-lts-raring (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2013-06-03 17:48:15 |
John Johansen |
description |
The flaw is an unauthenticated remote heap buffer overflow in the Linux iSCSI target subsystem. If there is a target configured and listening on the network, a remote attacker can corrupt heap memory, and almost certainly gain kernel execution control. I only got as far as proving it would Oops the server. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue, |
The flaw is an unauthenticated remote heap buffer overflow in the Linux iSCSI target subsystem. If there is a target configured and listening on the network, a remote attacker can corrupt heap memory, and almost certainly gain kernel execution control. I only got as far as proving it would Oops the server. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 local-2013-2850 |
|
| 2013-06-05 11:04:20 |
John Johansen |
linux-armadaxp (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2013-06-13 12:26:53 |
John Johansen |
description |
The flaw is an unauthenticated remote heap buffer overflow in the Linux iSCSI target subsystem. If there is a target configured and listening on the network, a remote attacker can corrupt heap memory, and almost certainly gain kernel execution control. I only got as far as proving it would Oops the server. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 local-2013-2850 |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 local-2013-2850 |
|
| 2013-07-12 20:22:18 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-07-12 20:22:22 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-07-12 20:22:26 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-07-12 20:22:29 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-07-12 20:22:33 |
Jamie Strandboge |
linux-lts-backport-natty (Ubuntu Saucy): status |
New |
Invalid |
|
| 2013-07-12 20:22:42 |
Jamie Strandboge |
linux-lts-backport-oneiric (Ubuntu Lucid): status |
New |
Invalid |
|
| 2013-07-12 20:22:45 |
Jamie Strandboge |
linux-lts-backport-oneiric (Ubuntu Precise): status |
New |
Invalid |
|
| 2013-07-12 20:22:49 |
Jamie Strandboge |
linux-lts-backport-oneiric (Ubuntu Quantal): status |
New |
Invalid |
|
| 2013-07-12 20:22:52 |
Jamie Strandboge |
linux-lts-backport-oneiric (Ubuntu Raring): status |
New |
Invalid |
|
| 2013-07-12 20:22:55 |
Jamie Strandboge |
linux-lts-backport-oneiric (Ubuntu Saucy): status |
New |
Invalid |
|
| 2014-04-17 19:01:17 |
Jamie Strandboge |
linux-ti-omap4 (Ubuntu Raring): status |
Fix Committed |
Won't Fix |
|
| 2014-06-26 19:47:55 |
Tim Gardner |
description |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 local-2013-2850 |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 cea4dcfdad926a27a18e188720efe0f2c9403456 |
|
| 2014-06-26 23:01:36 |
Jamie Strandboge |
linux-ti-omap4 (Ubuntu Quantal): status |
Fix Committed |
Won't Fix |
|
| 2014-09-15 19:57:55 |
Joseph Salisbury |
linux (Ubuntu Saucy): status |
Confirmed |
Won't Fix |
|
| 2014-12-05 06:31:48 |
Rolf Leggewie |
linux-ti-omap4 (Ubuntu Saucy): status |
Fix Committed |
Won't Fix |
|
| 2015-03-05 15:54:09 |
Mathew Hodson |
linux-ti-omap4 (Ubuntu): status |
Fix Committed |
Invalid |
|
| 2015-03-05 15:54:33 |
Mathew Hodson |
linux-ti-omap4 (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2015-03-05 16:02:08 |
Mathew Hodson |
linux (Ubuntu): status |
Confirmed |
Fix Released |
|
| 2015-03-05 16:13:50 |
Mathew Hodson |
description |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 cea4dcfdad926a27a18e188720efe0f2c9403456 |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: - cea4dcfdad926a27a18e188720efe0f2c9403456 |
|
| 2015-03-05 16:19:32 |
Mathew Hodson |
description |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: - cea4dcfdad926a27a18e188720efe0f2c9403456 |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 cea4dcfdad926a27a18e188720efe0f2c9403456 |
|
| 2015-05-08 11:16:05 |
John Johansen |
nominated for series |
|
Ubuntu Trusty |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-backport-oneiric (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-armadaxp (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-quantal (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-raring (Ubuntu Trusty) |
|
| 2015-05-08 11:16:05 |
John Johansen |
bug task added |
|
linux-lts-trusty (Ubuntu Trusty) |
|
| 2015-05-08 11:16:10 |
John Johansen |
nominated for series |
|
Ubuntu Utopic |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-backport-oneiric (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-armadaxp (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-quantal (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-raring (Ubuntu Utopic) |
|
| 2015-05-08 11:16:10 |
John Johansen |
bug task added |
|
linux-lts-trusty (Ubuntu Utopic) |
|
| 2015-05-08 11:16:14 |
John Johansen |
nominated for series |
|
Ubuntu Vivid |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-backport-oneiric (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-armadaxp (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-quantal (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-raring (Ubuntu Vivid) |
|
| 2015-05-08 11:16:15 |
John Johansen |
bug task added |
|
linux-lts-trusty (Ubuntu Vivid) |
|
| 2015-05-08 11:16:18 |
John Johansen |
nominated for series |
|
Ubuntu Wily |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-fsl-imx51 (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-mvl-dove (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-ec2 (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-ti-omap4 (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-backport-natty (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-backport-oneiric (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-armadaxp (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-quantal (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-raring (Ubuntu Wily) |
|
| 2015-05-08 11:16:18 |
John Johansen |
bug task added |
|
linux-lts-trusty (Ubuntu Wily) |
|
| 2015-05-08 11:16:38 |
John Johansen |
bug task deleted |
linux-lts-trusty (Ubuntu Lucid) |
|
|
| 2015-05-08 11:16:39 |
John Johansen |
bug task deleted |
linux-lts-trusty (Ubuntu Quantal) |
|
|
| 2015-05-08 11:16:40 |
John Johansen |
bug task deleted |
linux-lts-trusty (Ubuntu Raring) |
|
|
| 2015-05-08 11:16:43 |
John Johansen |
bug task deleted |
linux-lts-trusty (Ubuntu Saucy) |
|
|
| 2015-05-08 11:16:44 |
John Johansen |
bug task deleted |
linux-armadaxp (Ubuntu Lucid) |
|
|
| 2015-05-08 11:16:46 |
John Johansen |
bug task deleted |
linux-armadaxp (Ubuntu Quantal) |
|
|
| 2015-05-08 11:16:47 |
John Johansen |
bug task deleted |
linux-armadaxp (Ubuntu Raring) |
|
|
| 2015-05-08 11:16:48 |
John Johansen |
bug task deleted |
linux-armadaxp (Ubuntu Saucy) |
|
|
| 2015-05-08 11:16:50 |
John Johansen |
bug task deleted |
linux-ec2 (Ubuntu Lucid) |
|
|
| 2015-05-08 11:16:52 |
John Johansen |
bug task deleted |
linux-ec2 (Ubuntu Quantal) |
|
|
| 2015-05-08 11:16:54 |
John Johansen |
bug task deleted |
linux-ec2 (Ubuntu Raring) |
|
|
| 2015-05-08 11:16:55 |
John Johansen |
bug task deleted |
linux-ec2 (Ubuntu Saucy) |
|
|
| 2015-05-08 11:16:57 |
John Johansen |
bug task deleted |
linux-goldfish (Ubuntu Lucid) |
|
|
| 2015-05-08 11:16:59 |
John Johansen |
bug task deleted |
linux-goldfish (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:00 |
John Johansen |
bug task deleted |
linux-goldfish (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:02 |
John Johansen |
bug task deleted |
linux-goldfish (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:04 |
John Johansen |
bug task deleted |
linux-lts-saucy (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:05 |
John Johansen |
bug task deleted |
linux-lts-saucy (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:07 |
John Johansen |
bug task deleted |
linux-lts-saucy (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:09 |
John Johansen |
bug task deleted |
linux-lts-saucy (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:11 |
John Johansen |
bug task deleted |
linux-lts-quantal (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:12 |
John Johansen |
bug task deleted |
linux-lts-quantal (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:15 |
John Johansen |
bug task deleted |
linux-lts-quantal (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:17 |
John Johansen |
bug task deleted |
linux-lts-quantal (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:19 |
John Johansen |
bug task deleted |
linux-mvl-dove (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:21 |
John Johansen |
bug task deleted |
linux-mvl-dove (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:23 |
John Johansen |
bug task deleted |
linux-mvl-dove (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:25 |
John Johansen |
bug task deleted |
linux-mvl-dove (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:26 |
John Johansen |
bug task deleted |
linux-ti-omap4 (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:28 |
John Johansen |
bug task deleted |
linux-ti-omap4 (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:29 |
John Johansen |
bug task deleted |
linux-ti-omap4 (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:31 |
John Johansen |
bug task deleted |
linux-ti-omap4 (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:33 |
John Johansen |
bug task deleted |
linux-lts-vivid (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:34 |
John Johansen |
bug task deleted |
linux-lts-vivid (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:36 |
John Johansen |
bug task deleted |
linux-lts-vivid (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:38 |
John Johansen |
bug task deleted |
linux-lts-vivid (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:39 |
John Johansen |
bug task deleted |
linux (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:40 |
John Johansen |
bug task deleted |
linux (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:42 |
John Johansen |
bug task deleted |
linux (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:43 |
John Johansen |
bug task deleted |
linux (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:45 |
John Johansen |
bug task deleted |
linux-mako (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:47 |
John Johansen |
bug task deleted |
linux-mako (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:49 |
John Johansen |
bug task deleted |
linux-mako (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:51 |
John Johansen |
bug task deleted |
linux-mako (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:53 |
John Johansen |
bug task deleted |
linux-fsl-imx51 (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:54 |
John Johansen |
bug task deleted |
linux-fsl-imx51 (Ubuntu Quantal) |
|
|
| 2015-05-08 11:17:56 |
John Johansen |
bug task deleted |
linux-fsl-imx51 (Ubuntu Raring) |
|
|
| 2015-05-08 11:17:57 |
John Johansen |
bug task deleted |
linux-fsl-imx51 (Ubuntu Saucy) |
|
|
| 2015-05-08 11:17:58 |
John Johansen |
bug task deleted |
linux-lts-utopic (Ubuntu Lucid) |
|
|
| 2015-05-08 11:17:59 |
John Johansen |
bug task deleted |
linux-lts-utopic (Ubuntu Quantal) |
|
|
| 2015-05-08 11:18:00 |
John Johansen |
bug task deleted |
linux-lts-utopic (Ubuntu Raring) |
|
|
| 2015-05-08 11:18:02 |
John Johansen |
bug task deleted |
linux-lts-utopic (Ubuntu Saucy) |
|
|
| 2015-05-08 11:18:04 |
John Johansen |
bug task deleted |
linux-flo (Ubuntu Lucid) |
|
|
| 2015-05-08 11:18:05 |
John Johansen |
bug task deleted |
linux-flo (Ubuntu Quantal) |
|
|
| 2015-05-08 11:18:06 |
John Johansen |
bug task deleted |
linux-flo (Ubuntu Raring) |
|
|
| 2015-05-08 11:18:08 |
John Johansen |
bug task deleted |
linux-flo (Ubuntu Saucy) |
|
|
| 2015-05-08 11:18:09 |
John Johansen |
bug task deleted |
linux-lts-raring (Ubuntu Lucid) |
|
|
| 2015-05-08 11:18:12 |
John Johansen |
bug task deleted |
linux-lts-raring (Ubuntu Quantal) |
|
|
| 2015-05-08 11:18:14 |
John Johansen |
bug task deleted |
linux-lts-raring (Ubuntu Raring) |
|
|
| 2015-05-08 11:18:17 |
John Johansen |
bug task deleted |
linux-lts-raring (Ubuntu Saucy) |
|
|
| 2015-05-08 11:18:18 |
John Johansen |
bug task deleted |
linux-manta (Ubuntu Lucid) |
|
|
| 2015-05-08 11:18:20 |
John Johansen |
bug task deleted |
linux-manta (Ubuntu Quantal) |
|
|
| 2015-05-08 11:18:21 |
John Johansen |
bug task deleted |
linux-manta (Ubuntu Raring) |
|
|
| 2015-05-08 11:18:22 |
John Johansen |
bug task deleted |
linux-manta (Ubuntu Saucy) |
|
|
| 2015-05-08 11:18:24 |
John Johansen |
linux-lts-trusty (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:18:27 |
John Johansen |
linux-lts-trusty (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:18:29 |
John Johansen |
linux-lts-trusty (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:18:32 |
John Johansen |
linux-lts-trusty (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:18:35 |
John Johansen |
linux-lts-trusty (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:18:38 |
John Johansen |
linux-lts-trusty (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:18:40 |
John Johansen |
linux-lts-trusty (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:18:43 |
John Johansen |
linux-lts-trusty (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:18:46 |
John Johansen |
linux-lts-trusty (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:18:49 |
John Johansen |
linux-lts-trusty (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:18:51 |
John Johansen |
linux-lts-quantal (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:18:54 |
John Johansen |
linux-lts-quantal (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:18:56 |
John Johansen |
linux-lts-quantal (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:19:00 |
John Johansen |
linux-lts-quantal (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:19:03 |
John Johansen |
linux-lts-quantal (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:19:06 |
John Johansen |
linux-lts-quantal (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:19:09 |
John Johansen |
linux (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:19:12 |
John Johansen |
linux (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:19:15 |
John Johansen |
linux (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:19:18 |
John Johansen |
linux (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:19:20 |
John Johansen |
linux (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:19:24 |
John Johansen |
linux (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:19:27 |
John Johansen |
linux-ti-omap4 (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:19:31 |
John Johansen |
linux-ti-omap4 (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:19:35 |
John Johansen |
linux-ti-omap4 (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:19:38 |
John Johansen |
linux-ti-omap4 (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:19:42 |
John Johansen |
linux-ti-omap4 (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:19:46 |
John Johansen |
linux-ti-omap4 (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:19:49 |
John Johansen |
linux-lts-raring (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:19:53 |
John Johansen |
linux-lts-raring (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:19:56 |
John Johansen |
linux-lts-raring (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:19:58 |
John Johansen |
linux-lts-raring (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:20:00 |
John Johansen |
linux-lts-raring (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:20:04 |
John Johansen |
linux-lts-raring (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:20:07 |
John Johansen |
linux-armadaxp (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:20:11 |
John Johansen |
linux-armadaxp (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:20:13 |
John Johansen |
linux-armadaxp (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:20:16 |
John Johansen |
linux-armadaxp (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:20:19 |
John Johansen |
linux-armadaxp (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:20:22 |
John Johansen |
linux-armadaxp (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:20:24 |
John Johansen |
linux-mvl-dove (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:20:28 |
John Johansen |
linux-mvl-dove (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:20:31 |
John Johansen |
linux-mvl-dove (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:20:35 |
John Johansen |
linux-mvl-dove (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:20:38 |
John Johansen |
linux-mvl-dove (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:20:41 |
John Johansen |
linux-mvl-dove (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:20:43 |
John Johansen |
linux-manta (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:20:48 |
John Johansen |
linux-manta (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:20:51 |
John Johansen |
linux-manta (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:20:54 |
John Johansen |
linux-manta (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:20:57 |
John Johansen |
linux-manta (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:21:00 |
John Johansen |
linux-manta (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:21:03 |
John Johansen |
linux-manta (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:21:07 |
John Johansen |
linux-manta (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:21:09 |
John Johansen |
linux-manta (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:21:12 |
John Johansen |
linux-manta (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:21:14 |
John Johansen |
linux-ec2 (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:21:17 |
John Johansen |
linux-ec2 (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:21:19 |
John Johansen |
linux-ec2 (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:21:23 |
John Johansen |
linux-ec2 (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:21:25 |
John Johansen |
linux-ec2 (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:21:29 |
John Johansen |
linux-ec2 (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:21:33 |
John Johansen |
linux-lts-vivid (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:21:38 |
John Johansen |
linux-lts-vivid (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:21:40 |
John Johansen |
linux-lts-vivid (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:21:43 |
John Johansen |
linux-lts-vivid (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:21:48 |
John Johansen |
linux-lts-vivid (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:21:51 |
John Johansen |
linux-lts-vivid (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:21:54 |
John Johansen |
linux-lts-vivid (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:21:57 |
John Johansen |
linux-lts-vivid (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:22:00 |
John Johansen |
linux-lts-vivid (Ubuntu Trusty): status |
New |
Fix Committed |
|
| 2015-05-08 11:22:03 |
John Johansen |
linux-lts-vivid (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:22:05 |
John Johansen |
linux-mako (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:22:09 |
John Johansen |
linux-mako (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:22:12 |
John Johansen |
linux-mako (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:22:16 |
John Johansen |
linux-mako (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:22:19 |
John Johansen |
linux-mako (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:22:23 |
John Johansen |
linux-mako (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:22:26 |
John Johansen |
linux-mako (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:22:29 |
John Johansen |
linux-mako (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:22:31 |
John Johansen |
linux-mako (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:22:35 |
John Johansen |
linux-mako (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:22:38 |
John Johansen |
linux-fsl-imx51 (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:22:41 |
John Johansen |
linux-fsl-imx51 (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:22:44 |
John Johansen |
linux-fsl-imx51 (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:22:48 |
John Johansen |
linux-fsl-imx51 (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:22:50 |
John Johansen |
linux-fsl-imx51 (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:22:55 |
John Johansen |
linux-fsl-imx51 (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:22:57 |
John Johansen |
linux-lts-utopic (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:23:01 |
John Johansen |
linux-lts-utopic (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:23:05 |
John Johansen |
linux-lts-utopic (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:23:09 |
John Johansen |
linux-lts-utopic (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:23:12 |
John Johansen |
linux-lts-utopic (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:23:16 |
John Johansen |
linux-lts-utopic (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:23:18 |
John Johansen |
linux-lts-utopic (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:23:22 |
John Johansen |
linux-lts-utopic (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:23:25 |
John Johansen |
linux-lts-utopic (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:23:28 |
John Johansen |
linux-lts-utopic (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:23:30 |
John Johansen |
linux-goldfish (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:23:34 |
John Johansen |
linux-goldfish (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:23:36 |
John Johansen |
linux-goldfish (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:23:38 |
John Johansen |
linux-goldfish (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:23:41 |
John Johansen |
linux-goldfish (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:23:44 |
John Johansen |
linux-goldfish (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:23:49 |
John Johansen |
linux-goldfish (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:23:53 |
John Johansen |
linux-goldfish (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:23:55 |
John Johansen |
linux-goldfish (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:23:59 |
John Johansen |
linux-goldfish (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:24:01 |
John Johansen |
linux-flo (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-05-08 11:24:03 |
John Johansen |
linux-flo (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-05-08 11:24:07 |
John Johansen |
linux-flo (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-05-08 11:24:11 |
John Johansen |
linux-flo (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-05-08 11:24:14 |
John Johansen |
linux-flo (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-05-08 11:24:19 |
John Johansen |
linux-flo (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-05-08 11:24:21 |
John Johansen |
linux-flo (Ubuntu Utopic): status |
New |
Invalid |
|
| 2015-05-08 11:24:24 |
John Johansen |
linux-flo (Ubuntu Utopic): importance |
Undecided |
High |
|
| 2015-05-08 11:24:28 |
John Johansen |
linux-flo (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-05-08 11:24:33 |
John Johansen |
linux-flo (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-05-08 11:24:35 |
John Johansen |
description |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 cea4dcfdad926a27a18e188720efe0f2c9403456 |
Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet. A reproduction case requires patching open-iscsi to send overly large keys. Performing discovery in a loop will Oops the remote server. Attached is a proposed fix, and the patch I used in open-iscsi to trigger it. Thanks in advance for your cooperation in coordinating a fix for this issue,
Break-Fix: e48354ce078c079996f89d715dfa44814b4eba01 local-2013-2850 |
|
| 2015-12-03 11:50:57 |
Steve Beattie |
bug task deleted |
linux-lts-trusty (Ubuntu Utopic) |
|
|
| 2015-12-03 11:50:58 |
Steve Beattie |
bug task deleted |
linux-armadaxp (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:00 |
Steve Beattie |
bug task deleted |
linux-ec2 (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:01 |
Steve Beattie |
bug task deleted |
linux-lts-wily (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:03 |
Steve Beattie |
bug task deleted |
linux-goldfish (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:05 |
Steve Beattie |
bug task deleted |
linux-lts-saucy (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:07 |
Steve Beattie |
bug task deleted |
linux-lts-quantal (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:09 |
Steve Beattie |
bug task deleted |
linux-raspi2 (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:11 |
Steve Beattie |
bug task deleted |
linux-mvl-dove (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:13 |
Steve Beattie |
bug task deleted |
linux-ti-omap4 (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:15 |
Steve Beattie |
bug task deleted |
linux-lts-vivid (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:16 |
Steve Beattie |
bug task deleted |
linux (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:18 |
Steve Beattie |
bug task deleted |
linux-mako (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:20 |
Steve Beattie |
bug task deleted |
linux-fsl-imx51 (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:22 |
Steve Beattie |
bug task deleted |
linux-lts-utopic (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:24 |
Steve Beattie |
bug task deleted |
linux-flo (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:26 |
Steve Beattie |
bug task deleted |
linux-lts-raring (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:28 |
Steve Beattie |
bug task deleted |
linux-manta (Ubuntu Utopic) |
|
|
| 2015-12-03 11:51:30 |
Steve Beattie |
linux-lts-wily (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-12-03 11:51:35 |
Steve Beattie |
linux-lts-wily (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-12-03 11:51:38 |
Steve Beattie |
linux-lts-wily (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-12-03 11:51:41 |
Steve Beattie |
linux-lts-wily (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-12-03 11:51:44 |
Steve Beattie |
linux-lts-wily (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-12-03 11:51:48 |
Steve Beattie |
linux-lts-wily (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-12-03 11:51:51 |
Steve Beattie |
linux-lts-wily (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-12-03 11:51:54 |
Steve Beattie |
linux-lts-wily (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-12-03 11:51:58 |
Steve Beattie |
linux-raspi2 (Ubuntu Precise): status |
New |
Invalid |
|
| 2015-12-03 11:52:02 |
Steve Beattie |
linux-raspi2 (Ubuntu Precise): importance |
Undecided |
High |
|
| 2015-12-03 11:52:06 |
Steve Beattie |
linux-raspi2 (Ubuntu Wily): status |
New |
Invalid |
|
| 2015-12-03 11:52:09 |
Steve Beattie |
linux-raspi2 (Ubuntu Wily): importance |
Undecided |
High |
|
| 2015-12-03 11:52:13 |
Steve Beattie |
linux-raspi2 (Ubuntu Trusty): status |
New |
Invalid |
|
| 2015-12-03 11:52:16 |
Steve Beattie |
linux-raspi2 (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2015-12-03 11:52:19 |
Steve Beattie |
linux-raspi2 (Ubuntu Vivid): status |
New |
Invalid |
|
| 2015-12-03 11:52:23 |
Steve Beattie |
linux-raspi2 (Ubuntu Vivid): importance |
Undecided |
High |
|
| 2015-12-04 08:01:44 |
Steve Beattie |
nominated for series |
|
Ubuntu Xenial |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-fsl-imx51 (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-mvl-dove (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-ec2 (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-ti-omap4 (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-backport-maverick (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-backport-natty (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-backport-oneiric (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-armadaxp (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-quantal (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-raring (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-saucy (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-mako (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-manta (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-goldfish (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-flo (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-trusty (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-utopic (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-vivid (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-lts-wily (Ubuntu Xenial) |
|
| 2015-12-04 08:01:46 |
Steve Beattie |
bug task added |
|
linux-raspi2 (Ubuntu Xenial) |
|
| 2015-12-04 08:01:58 |
Steve Beattie |
linux-lts-wily (Ubuntu Xenial): status |
New |
Invalid |
|
| 2015-12-04 08:02:03 |
Steve Beattie |
linux-lts-wily (Ubuntu Xenial): importance |
Undecided |
High |
|
| 2015-12-04 08:02:06 |
Steve Beattie |
linux-raspi2 (Ubuntu Xenial): status |
New |
Fix Committed |
|
| 2015-12-04 08:02:10 |
Steve Beattie |
linux-raspi2 (Ubuntu Xenial): importance |
Undecided |
High |
|
| 2016-02-10 17:33:11 |
Steve Beattie |
linux-lts-xenial (Ubuntu Precise): status |
New |
Invalid |
|
| 2016-02-10 17:33:15 |
Steve Beattie |
linux-lts-xenial (Ubuntu Precise): importance |
Undecided |
High |
|
| 2016-02-10 17:33:18 |
Steve Beattie |
linux-lts-xenial (Ubuntu Wily): status |
New |
Invalid |
|
| 2016-02-10 17:33:22 |
Steve Beattie |
linux-lts-xenial (Ubuntu Wily): importance |
Undecided |
High |
|
| 2016-02-10 17:33:25 |
Steve Beattie |
linux-lts-xenial (Ubuntu Xenial): status |
New |
Invalid |
|
| 2016-02-10 17:33:30 |
Steve Beattie |
linux-lts-xenial (Ubuntu Xenial): importance |
Undecided |
High |
|
| 2016-02-10 17:33:34 |
Steve Beattie |
linux-lts-xenial (Ubuntu Trusty): status |
New |
Fix Committed |
|
| 2016-02-10 17:33:38 |
Steve Beattie |
linux-lts-xenial (Ubuntu Trusty): importance |
Undecided |
High |
|
| 2016-04-24 13:17:00 |
Rolf Leggewie |
linux-lts-backport-maverick (Ubuntu Utopic): status |
New |
Won't Fix |
|
| 2016-04-24 13:17:07 |
Rolf Leggewie |
linux-lts-backport-natty (Ubuntu Utopic): status |
New |
Won't Fix |
|
| 2016-04-24 13:17:11 |
Rolf Leggewie |
linux-lts-backport-oneiric (Ubuntu Utopic): status |
New |
Won't Fix |
|
| 2021-10-14 02:18:42 |
Steve Langasek |
linux-lts-saucy (Ubuntu Precise): status |
New |
Won't Fix |
|
