dcsimg
Linux Today: Linux News On Internet Time.





Another Linux Kernel Vulnerability Was Patched in All Supported Ubuntu Releases

Jan 15, 2021, 07:00 (0 Talkback[s])
(Other stories by Marius Nestor)

Affecting Ubuntu 20.10 (Groovy Gorilla), Ubuntu 20.04 LTS (Focal Fossa), Ubuntu 18.04 LTS (Bionic Beaver), Ubuntu 16.04 LTS (Xenial Xerus), and Ubuntu 14.04 ESM (Trusty Tahr), the new security vulnerability (CVE-2020-28374) was discovered in Linux kernel's LIO SCSI target implementation. Due to this security issue, the LIO SCSI target implementation failed to perform sufficient identifier checking in certain XCOPY requests, allowing an attacker with access to one or more LUNs in a multiple backstore environment to either expose sensitive information or modify data.

Complete Story