|
|
| |
|
| |
kernel: code execution
| Package(s): | Linux kernel |
CVE #(s): | CVE-2013-2850
|
| Created: | May 31, 2013 |
Updated: | July 1, 2013 |
| Description: |
From the SUSE advisory:
CVE-2013-2850: Incorrect strncpy usage in the network
listening part of the iscsi target driver could have been
used by remote attackers to crash the kernel or execute
code.
This required the iscsi target running on the machine
and the attacker able to make a network connection to it
(aka not filtered by firewalls). |
| Alerts: |
|
( Log in to post comments)
|
|
|