oss-sec mailing list archives

CVE request: Linux kernel / target information leak

From: Moritz Muehlenhoff <jmm () debian org>
Date: Tue, 10 Jun 2014 21:45:50 +0200

Hi,
Please assign a CVE ID:

Jorge Daniel Sequeira Matias discovered an information leak in the rd_mcp backend
of the iSCSI target subsystem in the Linux kernel (originally reported to the
Debian Security Team and investigated by Nicholas A. Bellinger):

Introduced in 2.6.38 and fixed in 3.14 with
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc

Cheers,
        Moritz

Current thread:

CVE request: Linux kernel / target information leak Moritz Muehlenhoff (Jun 10)
- Re: CVE request: Linux kernel / target information leak cve-assign (Jun 11)