jiachao2130/cvrf2cusa
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
main
cvrf2cusa/cvrf/2022/cvrf-openEuler-SA-2022-1757.xml
Jia Chao 0b34274085 git mv 
Signed-off-by: Jia Chao <jiac13@chinaunicom.cn>
2024-07-25 09:57:37 +08:00

106 lines
6.8 KiB
XML
Raw Permalink Blame History

<?xml version="1.0" encoding="UTF-8"?>
<cvrfdoc xmlns="http://www.icasi.org/CVRF/schema/cvrf/1.1" xmlns:cvrf="http://www.icasi.org/CVRF/schema/cvrf/1.1">
<DocumentTitle xml:lang="en">An update for open-iscsi is now available for openEuler-20.03-LTS-SP1</DocumentTitle>
<DocumentType>Security Advisory</DocumentType>
<DocumentPublisher Type="Vendor">
<ContactDetails>openeuler-security@openeuler.org</ContactDetails>
<IssuingAuthority>openEuler security committee</IssuingAuthority>
</DocumentPublisher>
<DocumentTracking>
<Identification>
<ID>openEuler-SA-2022-1757</ID>
</Identification>
<Status>Final</Status>
<Version>1.0</Version>
<RevisionHistory>
<Revision>
<Number>1.0</Number>
<Date>2022-07-22</Date>
<Description>Initial</Description>
</Revision>
</RevisionHistory>
<InitialReleaseDate>2022-07-22</InitialReleaseDate>
<CurrentReleaseDate>2022-07-22</CurrentReleaseDate>
<Generator>
<Engine>openEuler SA Tool V1.0</Engine>
<Date>2022-07-22</Date>
</Generator>
</DocumentTracking>
<DocumentNotes>
<Note Title="Synopsis" Type="General" Ordinal="1" xml:lang="en">Open-iSCSI security update</Note>
<Note Title="Summary" Type="General" Ordinal="2" xml:lang="en">An update for Open-iSCSI is now available for openEuler-20.03-LTS-SP1.</Note>
<Note Title="Description" Type="General" Ordinal="3" xml:lang="en">The Open-iSCSI project is a high-performance, transport independent, multi-platform implementation of RFC3720 iSCSI.
Security Fix(es):
An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c.(CVE-2020-17437)</Note>
<Note Title="Topic" Type="General" Ordinal="4" xml:lang="en">An update for Open-iSCSI is now available for openEuler-20.03-LTS-SP1.
openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.</Note>
<Note Title="Severity" Type="General" Ordinal="5" xml:lang="en">High</Note>
<Note Title="Affected Component" Type="General" Ordinal="6" xml:lang="en">Open-iSCSI</Note>
</DocumentNotes>
<DocumentReferences>
<Reference Type="Self">
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1757</URL>
</Reference>
<Reference Type="openEuler CVE">
<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2020-17437</URL>
</Reference>
<Reference Type="Other">
<URL>https://nvd.nist.gov/vuln/detail/CVE-2020-17437</URL>
</Reference>
</DocumentReferences>
<ProductTree xmlns="http://www.icasi.org/CVRF/schema/prod/1.1">
<Branch Type="Product Name" Name="openEuler">
<FullProductName ProductID="openEuler-20.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">openEuler-20.03-LTS-SP1</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="aarch64">
<FullProductName ProductID="open-iscsi-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-2.1.1-11.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-debuginfo-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-debuginfo-2.1.1-11.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-debugsource-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-debugsource-2.1.1-11.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-devel-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-devel-2.1.1-11.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-help-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">open-iscsi-help-2.1.1-11.oe1.aarch64.rpm</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="src">
<FullProductName ProductID="open-iscsi-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-2.1.1-11.oe1.src.rpm</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="x86_64">
<FullProductName ProductID="open-iscsi-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-2.1.1-11.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-debuginfo-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-debuginfo-2.1.1-11.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-debugsource-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-debugsource-2.1.1-11.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-devel-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">open-iscsi-devel-2.1.1-11.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="open-iscsi-help-2.1.1-11" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">open-iscsi-help-2.1.1-11.oe1.x86_64.rpm</FullProductName>
</Branch>
</ProductTree>
<Vulnerability Ordinal="1" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
<Notes>
<Note Title="Vulnerability Description" Type="General" Ordinal="1" xml:lang="en">An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c.</Note>
</Notes>
<ReleaseDate>2022-07-22</ReleaseDate>
<CVE>CVE-2020-17437</CVE>
<ProductStatuses>
<Status Type="Fixed">
<ProductID>openEuler-20.03-LTS-SP1</ProductID>
</Status>
</ProductStatuses>
<Threats>
<Threat Type="Impact">
<Description>High</Description>
</Threat>
</Threats>
<CVSSScoreSets>
<ScoreSet>
<BaseScore>8.2</BaseScore>
<Vector>AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H</Vector>
</ScoreSet>
</CVSSScoreSets>
<Remediations>
<Remediation Type="Vendor Fix">
<Description>Open-iSCSI security update</Description>
<DATE>2022-07-22</DATE>
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1757</URL>
</Remediation>
</Remediations>
</Vulnerability>
</cvrfdoc>
Reference in New Issue View Git Blame Copy Permalink