296,202
Total vulnerabilities in the database
In the Linux kernel, the following vulnerability has been resolved:
scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress
If during iscsi_sw_tcp_session_create() iscsi_tcp_r2tpool_alloc() fails, userspace could be accessing the host's ipaddress attr. If we then free the session via iscsi_session_teardown() while userspace is still accessing the session we will hit a use after free bug.
Set the tcp_sw_host->session after we have completed session creation and can no longer fail.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 6.2-rc1 | 6.2-rc1.x |
| linux / linux_kernel | 6.2-rc2 | 6.2-rc2.x |
| linux / linux_kernel | 6.2-rc3 | 6.2-rc3.x |
| linux / linux_kernel | 6.2-rc4 | 6.2-rc4.x |
| linux / linux_kernel | 6.2-rc5 | 6.2-rc5.x |
| linux / linux_kernel | 4.20 | 5.4.232 |
| linux / linux_kernel | - | 4.14.306 |
| linux / linux_kernel | 4.15 | 4.19.273 |
| linux / linux_kernel | 5.5 | 5.10.168 |
| linux / linux_kernel | 5.11 | 5.15.93 |
| linux / linux_kernel | 5.16 | 6.1.11 |