Package "tcmu-runner"

Name:	tcmu-runner
Description:	Daemon that handles the userspace side of the LIO TCM-User backstore
Latest version:	1.5.2-5ubuntu0.20.04.1
Release:	focal (20.04)
Level:	security
Repository:	universe
Head package:	tcmu
Homepage:	https://github.com/open-iscsi/tcmu-runner

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "tcmu-runner"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "tcmu-runner" in Focal

Repository	Area	Version
base	universe	1.5.2-5build1
updates	universe	1.5.2-5ubuntu0.20.04.1

Changelog

Version: 1.5.2-5ubuntu0.20.04.1 2021-01-27 21:06:16 UTC

tcmu (1.5.2-5ubuntu0.20.04.1) focal-security; urgency=medium * SECURITY UPDATE: Access control bypass vulnerability - debian/patches/CVE-2021-3139_1.patch: fail cross-device XCOPY requests. - debian/patches/CVE-2021-3139_2.patch: fail XCOPY requests with inline data. - debian/patches/CVE-2021-3139_3.patch: don't assume two XCOPY CSCDs. - debian/patches/CVE-2021-3139_4.patch: error if both src/dst_dev are unset after CSCD. - CVE-2021-3139 -- Paulo Flabiano Smorigo <email address hidden> Tue, 19 Jan 2021 13:35:24 +0000

CVE-2021-3139

In Open-iSCSI tcmu-runner 1.3.x, 1.4.x, and 1.5.x through 1.5.2, xcopy_locate_udev in tcmur_cmd_handler.c lacks a check for transport-layer restricti

About - Send Feedback to @ubuntu_updates

Package "tcmu-runner"

Links

Download "tcmu-runner"

Other versions of "tcmu-runner" in Focal

Changelog

Share this page

Bookmarks

Latest updates

security

PPA updates