References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

scsi: target: iscsi: Fix timeout on deleted connection

NOPIN response timer may expire on a deleted connection and crash with
such logs:

Did not receive response to NOPIN on CID: 0, failing connection for I_T Nexus (null),i,0x00023d000125,iqn.2017-01.com.iscsi.target,t,0x3d

BUG: Kernel NULL pointer dereference on read at 0x00000000
NIP  strlcpy+0x8/0xb0
LR iscsit_fill_cxn_timeout_err_stats+0x5c/0xc0 [iscsi_target_mod]
Call T

https://git.kernel.org/stable/c/019ca2804f3fb49a7f8e56ea6aeaa1ff32724c27

https://git.kernel.org/stable/c/2c5081439c7ab8da08427befe427f0d732ebc9f9

https://git.kernel.org/stable/c/3e6429e3707943078240a2c0c0b3ee99ea9b0d9c

https://git.kernel.org/stable/c/571ce6b6f5cbaf7d24af03cad592fc0e2a54de35

https://git.kernel.org/stable/c/6815846e0c3a62116a7da9740e3a7c10edc5c7e9

https://git.kernel.org/stable/c/7f533cc5ee4c4436cee51dc58e81dfd9c3384418

https://git.kernel.org/stable/c/87389bff743c55b6b85282de91109391f43e0814

https://git.kernel.org/stable/c/fe8421e853ef289e1324fcda004751c89dd9c18a