open-iscsi is vulnerable to denial of service (DoS). The vulnerability exists through an Out-of-Bounds read in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum
in net/ipv4/uip.c
.
CPE | Name | Operator | Version |
---|---|---|---|
open-iscsi:sid | eq | 2.1.2-1 | |
open-iscsi:bullseye | eq | 2.0.874-7.1 | |
open-iscsi:devel | eq | 2.1.1-1ubuntu2 | |
open-iscsi:hirsute | eq | 2.1.1-1ubuntu2 |