Total vulnerabilities in the database
Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.
| Software | From | Fixed in |
|---|---|---|
| zaal / tgt | 1.0.5 | 1.0.5.x |
| zaal / tgt | 1.0.3 | 1.0.3.x |
| zaal / tgt | 1.0.9 | 1.0.9.x |
| zaal / tgt | 1.0.6 | 1.0.6.x |
| zaal / tgt | 1.0.12 | 1.0.12.x |
| zaal / tgt | 0.9.5 | 0.9.5.x |
| zaal / tgt | - | 1.0.13.x |
| zaal / tgt | 1.0.4 | 1.0.4.x |
| zaal / tgt | 1.0.1 | 1.0.1.x |
| zaal / tgt | 1.0.11 | 1.0.11.x |
| zaal / tgt | 1.0.2 | 1.0.2.x |
| zaal / tgt | 1.0.8 | 1.0.8.x |
| zaal / tgt | 1.0.7 | 1.0.7.x |
| zaal / tgt | 1.0.0 | 1.0.0.x |
| zaal / tgt | 1.0.10 | 1.0.10.x |