Olaf Kirch

Name of the Vulnerable Software and Affected Versions: open-iscsi versions prior to 2.0-865 Description: The issue concerns multiple vulnerabilities in the open-iscsi package of the Debian GNU/Linux operating system, which can lead to a disruption in the availability of protected information. A local attacker can exploit these vulnerabilities. Specifically, in the `usr/mgmt ipc.c` file of `iscsid` in `open-iscsi` (iscsi-initiator-utils) before version 2.0-865, the client's UID is checked on the listening `AF LOCAL` socket instead of the new connection. This allows remote attackers to access the management interface, potentially causing a denial of service, such as the exit of `iscsid` or the loss of an iSCSI connection. Recommendations: For versions prior to 2.0-865, update to version 2.0-865 or later to resolve the issue. As a temporary workaround, consider restricting access to the management interface to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: open-iscsi versions prior to 2.0-865 Description: The issue concerns multiple vulnerabilities in the open-iscsi package of the Debian GNU/Linux operating system. These vulnerabilities can be exploited by a local attacker, potentially leading to a denial of service, which disrupts the availability of protected information. Specifically, the `usr/log.c` file in `iscsid` uses a semaphore with insecure permissions for managing log messages, allowing local users to cause a denial of service by grabbing the semaphore. Recommendations: For open-iscsi versions prior to 2.0-865, consider updating to version 2.0-865 or later to resolve the issue. As a temporary workaround, consider restricting access to the `usr/log.c` file in `iscsid` to prevent local users from exploiting the vulnerability. Additionally, restrict the use of the semaphore used for managing log messages to minimize the risk of a denial of service.

**Name of the Vulnerable Software and Affected Versions** linux-image-2.6.24-etchnhalf.1-sb1-bcm91250a linux-image-2.6.24-etchnhalf.1-s390-tape linux-headers-2.6.24-etchnhalf.1-all-ia64 linux-image-2.6.24-etchnhalf.1-parisc-smp linux-headers-2.6.24-etchnhalf.1-itanium linux-image-2.6.24-etchnhalf.1-r5k-cobalt linux-image-2.6.24-etchnhalf.1-iop32x linux-headers-2.6.24-etchnhalf.1-amd64 linux-headers-2.6.24-etchnhalf.1-parisc64 linux-manual-2.6.24 linux-headers-2.6.24-etchnhalf.1-all-amd64 linux-image-2.6.24-etchnhalf.1-sparc64-smp linux-image-2.6.24-etchnhalf.1-alpha-smp linux-image-2.6.24-etchnhalf.1-686 linux-image-2.6.24-etchnhalf.1-amd64 linux-image-2.6.24-etchnhalf.1-sparc64 linux-image-2.6.24-etchnhalf.1-powerpc linux-doc-2.6.24 linux-support-2.6.24-etchnhalf.1 linux-source-2.6.24 linux-headers-2.6.24-etchnhalf.1-powerpc-miboot linux-image-2.6.24-etchnhalf.1-alpha-legacy linux-image-2.6.24-etchnhalf.1-powerpc-smp linux-image-2.6.24-etchnhalf.1-powerpc64 linux-image-2.6.24-etchnhalf.1-alpha-generic linux-headers-2.6.24-etchnhalf.1-all-arm linux-image-2.6.24-etchnhalf.1-parisc64-smp linux-headers-2.6.24-etchnhalf.1-footbridge linux-headers-2.6.24-etchnhalf.1-all-i386 linux-headers-2.6.24-etchnhalf.1-all-sparc linux-image-2.6.24-etchnhalf.1-footbridge linux-image-2.6.24-etchnhalf.1-powerpc-miboot linux-headers-2.6.24-etchnhalf.1-alpha-legacy linux-image-2.6.24-etchnhalf.1-686-bigmem linux-image-2.6.24-etchnhalf.1-parisc64 linux-image-2.6.24-etchnhalf.1-s390 linux-headers-2.6.24-etchnhalf.1-powerpc64 linux-headers-2.6.24-etchnhalf.1-parisc-smp linux-image-2.6.24-etchnhalf.1-mckinley linux-headers-2.6.24-etchnhalf.1-sparc64-smp linux-image-2.6.24-etchnhalf.1-486 linux-headers-2.6.24-etchnhalf.1-sb1-bcm91250a linux-patch-debian-2.6.24 linux-headers-2.6.24-etchnhalf.1-sparc64 linux-tree-2.6.24 linux-headers-2.6.24-etchnhalf.1-r5k-cobalt linux-image-2.6.24-etchnhalf.1-parisc linux-headers-2.6.24-etchnhalf.1-powerpc-smp linux-headers-2.6.24-etchnhalf.1-all-alpha linux-headers-2.6.24-etchnhalf.1-sb1a-bcm91480b linux-headers-2.6.24-etchnhalf.1-486 linux-headers-2.6.24-etchnhalf.1-all-hppa linux-headers-2.6.24-etchnhalf.1-686 linux-headers-2.6.24-etchnhalf.1-all-powerpc linux-image-2.6.24-etchnhalf.1-sb1a-bcm91480b linux-headers-2.6.24-etchnhalf.1-powerpc linux-image-2.6.24-etchnhalf.1-ixp4xx linux-headers-2.6.24-etchnhalf.1-iop32x linux-image-2.6.24-etchnhalf.1-4kc-malta linux-headers-2.6.24-etchnhalf.1-686-bigmem linux-headers-2.6.24-etchnhalf.1-common linux-image-2.6.24-etchnhalf.1-s390x linux-headers-2.6.24-etchnhalf.1-all-mipsel linux-headers-2.6.24-etchnhalf.1-alpha-smp linux-headers-2.6.24-etchnhalf.1-5kc-malta linux-headers-2.6.24-etchnhalf.1-all-s390 linux-headers-2.6.24-etchnhalf.1-s390 linux-headers-2.6.24-etchnhalf.1-ixp4xx linux-image-2.6.24-etchnhalf.1-itanium linux-headers-2.6.24-etchnhalf.1-alpha-generic linux-headers-2.6.24-etchnhalf.1-parisc linux-headers-2.6.24-etchnhalf.1-all linux-headers-2.6.24-etchnhalf.1-mckinley linux-image-2.6.24-etchnhalf.1-5kc-malta linux-headers-2.6.24-etchnhalf.1-parisc64-smp linux-headers-2.6.24-etchnhalf.1-s390x linux-headers-2.6.24-etchnhalf.1-4kc-malta **Description** The issue affects the Linux kernel, specifically the i915 driver, allowing local users to cause a denial of service (memory corruption) via a crafted ioctl call. This is related to the absence of the DRM MASTER and DRM ROOT ONLY flags in the ioctl's configuration. The vulnerability can lead to a disruption of confidentiality, integrity, and availability of protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.