Home

CVE-2021-3139

Description

In Open-iSCSI tcmu-runner 1.3.x, 1.4.x, and 1.5.x through 1.5.2, xcopy_locate_udev in tcmur_cmd_handler.c lacks a check for transport-layer restrictions, allowing remote attackers to read or write files via directory traversal in an XCOPY request. For example, an attack can occur over a network if the attacker has access to one iSCSI LUN. NOTE: relative to CVE-2020-28374, this is a similar mistake in a different algorithm.

Risk Information

Base Score
8.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.912

Associated Vulnerability

VulnerabilityOS Platform
TCM-Userspace backend (USN-4707-1) libtcmu2_1.5.2-5ubuntu0.20.04.1_amd64.debLinux
TCM-Userspace backend (USN-4707-1) libtcmu2_1.5.2-5ubuntu0.20.10.1_amd64.debLinux
TCM-Userspace backend (USN-4707-1) tcmu-runner_1.5.2-5ubuntu0.20.04.1_amd64.debLinux
TCM-Userspace backend (USN-4707-1) tcmu-runner_1.5.2-5ubuntu0.20.10.1_amd64.debLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-ansible-4.0.49.2-1.el7cp.noarch.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-ansible-4.0.49.2-1.el8cp.noarch.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-base-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-base-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-common-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-common-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-debugsource-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-fuse-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-fuse-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-grafana-dashboards-14.2.11-147.el7cp.noarch.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-grafana-dashboards-14.2.11-147.el8cp.noarch.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-mds-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-mds-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-radosgw-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-radosgw-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-selinux-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update ceph-selinux-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update gperftools-debugsource-2.6.3-3.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update gperftools-libs-2.6.3-3.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libcephfs-devel-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libcephfs-devel-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libcephfs2-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libcephfs2-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librados-devel-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librados-devel-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librados2-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librados2-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libradospp-devel-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libradospp-devel-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libradosstriper1-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libradosstriper1-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librbd-devel-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librbd-devel-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librbd1-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librbd1-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librgw-devel-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librgw-devel-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librgw2-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update librgw2-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libtcmu-1.5.2-2.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update libtcmu-1.5.2-3.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python-ceph-argparse-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python-cephfs-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python-rados-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python-rbd-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python-rgw-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python3-ceph-argparse-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python3-cephfs-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python3-rados-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python3-rbd-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update python3-rgw-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update rbd-mirror-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update rbd-mirror-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update rbd-nbd-14.2.11-147.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update rbd-nbd-14.2.11-147.el8cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update tcmu-runner-1.5.2-2.el7cp.x86_64.rpmLinux
(RHSA-2021:1452) Red Hat Ceph Storage security, bug fix, and enhancement Update tcmu-runner-1.5.2-3.el8cp.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234