oss-sec mailing list archives

Re: tcmu-runner: multiple vulnerabilities in tcmu-runner daemon allowing local DoS, information leak and a memory leak

From: Matthias Gerstner <mgerstner () suse de>
Date: Mon, 21 Aug 2017 18:08:56 +0200

------------------------------------------------------------------------
qcow handler opens up an information leak via the CheckConfig D-Bus
method
------------------------------------------------------------------------

[...]

  https://github.com/open-iscsi/tcmu-runner/commit/8cf8208775022301adaa59c240bb7f93742d1329


CVE-2017-1000190


Sorry, made a mistake here. This is CVE-2017-1000199.

Attachment: signature.asc
Description: Digital signature

Current thread:

tcmu-runner: multiple vulnerabilities in tcmu-runner daemon allowing local DoS, information leak and a memory leak Matthias Gerstner (Jul 24)
- Re: tcmu-runner: multiple vulnerabilities in tcmu-runner daemon allowing local DoS, information leak and a memory leak Matthias Gerstner (Aug 21)
  - Re: tcmu-runner: multiple vulnerabilities in tcmu-runner daemon allowing local DoS, information leak and a memory leak Matthias Gerstner (Aug 21)