| |||||||||||||||||||
Ubuntu alert USN-1235-1 (open-iscsi)
========================================================================== Ubuntu Security Notice USN-1235-1 October 20, 2011 open-iscsi vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 8.04 LTS Summary: iscsi_discovery in open-iscsi could be made to overwrite files as the administrator. Software Description: - open-iscsi: Open Source iSCSI implementation Details: Colin Watson discovered that iscsi_discovery in Open-iSCSI did not safely create temporary files. A local attacker could exploit this to to overwrite arbitrary files with root privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 8.04 LTS: open-iscsi 2.0.865-1ubuntu3.5 In general, a standard system update will make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1235-1 CVE-2009-1297 Package Information: https://launchpad.net/ubuntu/+source/open-iscsi/2.0.865-1... -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security... (Log in to post comments)
|
|||||||||||||||||||