open-iscsi/tcmu-runner

open-iscsi/tcmu-runner

Releases37

Frequency2 months 2 weeks

Last Release about 3 years ago

Stars196

A daemon that handles the userspace side of the LIO TCM-User backstore.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-3139 ↗	Jan 13, 2021Wednesday, 13 January 2021, 16:15	8.1 HIGH	5.5 MEDIUM
In Open-iSCSI tcmu-runner 1.3.x, 1.4.x, and 1.5.x through 1.5.2, xcopy_locate_udev in tcmur_cmd_handler.c lacks a check for transport-layer restrictions, allowing remote attackers to read or write files via directory traversal in an XCOPY request. For example, an attack can occur over a network if the attacker has access to one iSCSI LUN. NOTE: relative to CVE-2020-28374, this is a similar mistake in a different algorithm.
CVE-2017-1000201 ↗	Nov 17, 2017Friday, 17 November 2017, 02:29	—	2.1 LOW
The tcmu-runner daemon in tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a local denial of service attack
CVE-2017-1000198 ↗	Nov 17, 2017Friday, 17 November 2017, 02:29	—	5 MEDIUM
tcmu-runner daemon version 0.9.0 to 1.2.0 is vulnerable to invalid memory references in the handler_glfs.so handler resulting in denial of service
CVE-2017-1000199 ↗	Nov 17, 2017Friday, 17 November 2017, 02:29	—	5 MEDIUM
tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handler_qcow.so resulting in non-privileged users being able to check for existence of any file with root privileges.
CVE-2017-1000200 ↗	Nov 17, 2017Friday, 17 November 2017, 02:29	—	5 MEDIUM
tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a dbus triggered NULL pointer dereference in the tcmu-runner daemon's on_unregister_handler() function resulting in denial of service