PT-2021-2997 · Linux+8 · Linux Kernel+8

David Disseldorp

·

Published

2021-01-11

·

Updated

2021-05-28

·

CVE-2020-28374

CVSS v2.0

8.5

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:N
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.7
Description The issue is related to insufficient identifier checking in the LIO SCSI target code, which can be exploited by remote attackers to read or write files via directory traversal in an XCOPY request. This can occur over a network if the attacker has access to one iSCSI LUN, allowing them to gain control over file access because I/O operations are proxied via an attacker-selected backstore.
Recommendations For Linux kernel versions prior to 5.10.7, update to version 5.10.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the target core xcopy.c driver or disabling the XCOPY request functionality until a patch is available. Restrict access to iSCSI LUNs to minimize the risk of exploitation.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

ALSA-2021:1093
ALT-PU-2021-1030
ALT-PU-2021-1031
ALT-PU-2021-1034
ALT-PU-2021-1038
ALT-PU-2021-1051
ALT-PU-2021-1083
ALT-PU-2021-1099
ALT-PU-2021-1105
ALT-PU-2021-1168
ALT-PU-2021-1201
ALT-PU-2021-1211
ALT-PU-2021-1446
ALT-PU-2021-1621
ALT-PU-2021-1656
ALT-PU-2021-1739
ALT-PU-2021-1745
ALT-PU-2021-1862
ALT-PU-2021-1866
ALT-PU-2021-1870
BDU:2021-02587
CESA-2021_0856
CESA-2021_1081
CESA-2021_1093
CVE-2020-28374
DLA-2557-1
DLA-2586-1
DSA-4843-1
LSN-0074-1
MGASA-2021-0047
MGASA-2021-0058
OESA-2021-1086
OESA-2021-1087
OPENSUSE-SU-2021:0060-1
OPENSUSE-SU-2021:0075-1
OPENSUSE-SU-2021_0060-1
OPENSUSE-SU-2021_0075-1
OPENSUSE-SU-2024:11940-1
RHSA-2021:0856
RHSA-2021:0857
RHSA-2021:0862
RHSA-2021:1081
RHSA-2021:1093
RHSA-2021:1376
RHSA-2021:1377
RHSA-2021:1531
RHSA-2021:1532
RHSA-2021:2099
RHSA-2021:2106
RHSA-2021:2167
RHSA-2021:2185
RHSA-2021:2190
RHSA-2021:2732
RHSA-2021_0856
RHSA-2021_0857
RHSA-2021_1081
RHSA-2021_1093
SUSE-SU-2021:0117-1
SUSE-SU-2021:0118-1
SUSE-SU-2021:0133-1
SUSE-SU-2021:0347-1
SUSE-SU-2021:0348-1
SUSE-SU-2021:0427-1
SUSE-SU-2021:0433-1
SUSE-SU-2021:0434-1
SUSE-SU-2021:0438-1
SUSE-SU-2021:0743-1
SUSE-SU-2021:0744-1
SUSE-SU-2021:0818-1
SUSE-SU-2021:0823-1
SUSE-SU-2021:0826-1
SUSE-SU-2021:0835-1
SUSE-SU-2021:0841-1
SUSE-SU-2021:0842-1
SUSE-SU-2021:0849-1
SUSE-SU-2021:0853-1
SUSE-SU-2021:0859-1
SUSE-SU-2021:0868-1
SUSE-SU-2021:0870-1
SUSE-SU-2021_0093-1
SUSE-SU-2021_0743-1
SUSE-SU-2021_0744-1
SUSE-SU-2021_0841-1
SUSE-SU-2021_0842-1
SUSE-SU-2021_0849-1
USN-4694-1
USN-4709-1
USN-4711-1
USN-4713-1
USN-4713-2
USN-4753-1
USN-4901-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu