Oval Definition:oval:com.redhat.rhsa:def:20110332
Revision Date:2011-03-09Version:639
Title:RHSA-2011:0332: scsi-target-utils security update (Important)
Description:The scsi-target-utils package contains the daemon and tools to set up and monitor SCSI targets. Currently, iSCSI software and iSER targets are supported.

  • A double-free flaw was found in scsi-target-utils' tgtd daemon. A remote attacker could trigger this flaw by sending carefully-crafted network traffic, causing the tgtd daemon to crash. (CVE-2011-0001)

    Red Hat would like to thank Emmanuel Bouillon of NATO C3 Agency for reporting this issue.

    All scsi-target-utils users should upgrade to this updated package, which contains a backported patch to correct this issue. All running scsi-target-utils services must be restarted for the update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2011-0001
    CVE-2011-0001
    RHSA-2011:0332
    RHSA-2011:0332-01
    RHSA-2011:0332-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND scsi-target-utils is earlier than 0:1.0.4-3.el6_0.1
  • AND scsi-target-utils is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND scsi-target-utils is earlier than 0:1.0.8-0.el5_6.1
  • AND scsi-target-utils is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • scsi-target-utils is earlier than 0:1.0.4-3.el6_0.1
  • AND scsi-target-utils is signed with Red Hat redhatrelease2 key
  • AND Package Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
    • BACK