Open-iSCSI tcmu-runner up to 1.3.x/1.4.x/1.5.2 tcmur_cmd_handler.c xcopy_locate_udev pathname traversal
A vulnerability classified as critical has been found in Open-iSCSI tcmu-runner up to 1.3.x/1.4.x/1.5.2. Affected is the function
xcopy_locate_udev of the file tcmur_cmd_handler.c. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Want to stay up to date on a daily basis?
Enable the mail alert feature now!