---

Another Linux Kernel Vulnerability Was Patched in All Supported Ubuntu Releases

Affecting Ubuntu 20.10 (Groovy Gorilla), Ubuntu 20.04 LTS (Focal Fossa), Ubuntu 18.04 LTS (Bionic Beaver), Ubuntu 16.04 LTS (Xenial Xerus), and Ubuntu 14.04 ESM (Trusty Tahr), the new security vulnerability (CVE-2020-28374) was discovered in Linux kernel’s LIO SCSI target implementation. Due to this security issue, the LIO SCSI target implementation failed to perform sufficient identifier checking in certain XCOPY requests, allowing an attacker with access to one or more LUNs in a multiple backstore environment to either expose sensitive information or modify data.

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis