REDHAT-BUG-593877: Buffer Overflow
First published: Wed May 19 2010(Updated: )
It was reported that a stack buffer overflow vulnerability exists in multiple implementations of iSCSI target, including scsi-target-utils. A missing bounds check when handling SCN messages could result in a buffer overflow when the iSCSI Name string is longer than 1008 bytes, which could lead to corruption of sensitive stack data. During investigation, more buffer overflow vulnerabilities were discovered as well. Acknowledgements: Red Hat would like to thank the Vulnerability Research Team at TELUS Security Labs and Fujita Tomonori for responsibly reporting these flaws.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| scsi-target-utils |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2010-0743
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=422756&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=422756&action=edit
- https://access.redhat.com/security/cve/CVE-2010-2221
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=424334&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=424334&action=edit
- http://scst.svn.sourceforge.net/viewvc/scst?view=revision&revision=1793
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=593877#c11
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=593877#c34
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=593877#c35
- http://lists.grok.org.uk/pipermail/full-disclosure/2010-July/075478.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=593877#c19
- https://rhn.redhat.com/errata/RHSA-2010-0518.html
- https://bugzilla.redhat.com/show_bug.cgi?id=593877
Frequently Asked Questions
What is the severity of REDHAT-BUG-593877?
The severity of REDHAT-BUG-593877 is considered critical due to the potential for a stack buffer overflow.
How do I fix REDHAT-BUG-593877?
To fix REDHAT-BUG-593877, ensure that you update the scsi-target-utils to the latest version released by Red Hat.
What systems are affected by REDHAT-BUG-593877?
The systems affected by REDHAT-BUG-593877 include multiple implementations of iSCSI target, notably Red Hat scsi-target-utils.
What are the potential consequences of REDHAT-BUG-593877?
The potential consequences of REDHAT-BUG-593877 include application crashes and unauthorized access to system resources due to a buffer overflow.
How can I determine if my version is affected by REDHAT-BUG-593877?
You can determine if your version is affected by REDHAT-BUG-593877 by checking your installed version of scsi-target-utils against the known vulnerable versions listed in Red Hat advisories.
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-2221
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/scsi-target-utils