Package "tcmu"

Name:	tcmu
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: Library that handles the userspace side of the LIO TCM-User backstore Daemon that handles the userspace side of the LIO TCM-User backstore
Latest version:	1.5.2-5ubuntu0.20.04.1
Release:	focal (20.04)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "tcmu" in Focal

Repository	Area	Version
updates	universe	1.5.2-5ubuntu0.20.04.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 1.5.2-5ubuntu0.20.04.1 2021-01-27 21:06:16 UTC

tcmu (1.5.2-5ubuntu0.20.04.1) focal-security; urgency=medium * SECURITY UPDATE: Access control bypass vulnerability - debian/patches/CVE-2021-3139_1.patch: fail cross-device XCOPY requests. - debian/patches/CVE-2021-3139_2.patch: fail XCOPY requests with inline data. - debian/patches/CVE-2021-3139_3.patch: don't assume two XCOPY CSCDs. - debian/patches/CVE-2021-3139_4.patch: error if both src/dst_dev are unset after CSCD. - CVE-2021-3139 -- Paulo Flabiano Smorigo <email address hidden> Tue, 19 Jan 2021 13:35:24 +0000

CVE-2021-3139

In Open-iSCSI tcmu-runner 1.3.x, 1.4.x, and 1.5.x through 1.5.2, xcopy_locate_udev in tcmur_cmd_handler.c lacks a check for transport-layer restricti

About - Send Feedback to @ubuntu_updates

Package "tcmu"

Links

Other versions of "tcmu" in Focal

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

PPA updates