Security update for open-iscsi SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:1164-1 Final 1 1 2021-04-13T12:02:36Z current 2021-04-13T12:02:36Z 2021-04-13T12:02:36Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for open-iscsi This update for open-iscsi fixes the following issues: - CVE-2020-17437: uIP Out-of-Bounds Write (bsc#1179908) - CVE-2020-17438: uIP Out-of-Bounds Write (bsc#1179908) - CVE-2020-13987: uIP Out-of-Bounds Read (bsc#1179908) - CVE-2020-13988: uIP Integer Overflow (bsc#1179908) - Enabled no-wait ('-W') iscsiadm option for iscsi login service (bsc#1173886, bsc#1183421) - Added the ability to perform async logins (bsc#1173886) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-1164,SUSE-SLE-Module-Legacy-15-SP2-2021-1164,SUSE-SLE-Module-Legacy-15-SP3-2021-1164,SUSE-SLE-Product-HPC-15-2021-1164,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-1164,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-1164,SUSE-SLE-Product-SLES-15-2021-1164,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-1164,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-1164,SUSE-SLE-Product-SLES_SAP-15-2021-1164,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-1164,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-1164,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-1164,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-1164,SUSE-Storage-6-2021-1164 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20211164-1/ Link for SUSE-SU-2021:1164-1 https://lists.suse.com/pipermail/sle-security-updates/2021-April/008619.html E-Mail link for SUSE-SU-2021:1164-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1173886 SUSE Bug 1173886 https://bugzilla.suse.com/1179908 SUSE Bug 1179908 https://bugzilla.suse.com/1183421 SUSE Bug 1183421 https://www.suse.com/security/cve/CVE-2020-13987/ SUSE CVE CVE-2020-13987 page https://www.suse.com/security/cve/CVE-2020-13988/ SUSE CVE CVE-2020-13988 page https://www.suse.com/security/cve/CVE-2020-17437/ SUSE CVE CVE-2020-17437 page https://www.suse.com/security/cve/CVE-2020-17438/ SUSE CVE CVE-2020-17438 page SUSE Enterprise Storage 6 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Module for Legacy 15 SP2 SUSE Linux Enterprise Module for Legacy 15 SP3 SUSE Linux Enterprise Server 15 SP1-BCL SUSE Linux Enterprise Server 15 SP1-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 iscsiuio-0.7.8.2-13.42.1 libopeniscsiusr0_2_0-2.0.876-13.42.1 open-iscsi-2.0.876-13.42.1 open-iscsi-devel-2.0.876-13.42.1 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Enterprise Storage 6 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Enterprise Storage 6 open-iscsi-2.0.876-13.42.1 as a component of SUSE Enterprise Storage 6 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Enterprise Storage 6 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-BCL iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise Server 15-LTSS libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15-LTSS open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15-LTSS open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server 15-LTSS iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 open-iscsi-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Manager Proxy 4.0 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Manager Proxy 4.0 open-iscsi-2.0.876-13.42.1 as a component of SUSE Manager Proxy 4.0 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Manager Proxy 4.0 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Manager Retail Branch Server 4.0 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Manager Retail Branch Server 4.0 open-iscsi-2.0.876-13.42.1 as a component of SUSE Manager Retail Branch Server 4.0 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Manager Retail Branch Server 4.0 iscsiuio-0.7.8.2-13.42.1 as a component of SUSE Manager Server 4.0 libopeniscsiusr0_2_0-2.0.876-13.42.1 as a component of SUSE Manager Server 4.0 open-iscsi-2.0.876-13.42.1 as a component of SUSE Manager Server 4.0 open-iscsi-devel-2.0.876-13.42.1 as a component of SUSE Manager Server 4.0 An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum in net/ipv4/uip.c. CVE-2020-13987 SUSE Enterprise Storage 6:iscsiuio-0.7.8.2-13.42.1 SUSE Enterprise Storage 6:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Proxy 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Proxy 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Retail Branch Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-devel-2.0.876-13.42.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211164-1/ https://www.suse.com/security/cve/CVE-2020-13987.html CVE-2020-13987 https://bugzilla.suse.com/1179907 SUSE Bug 1179907 https://bugzilla.suse.com/1179908 SUSE Bug 1179908 https://bugzilla.suse.com/1193385 SUSE Bug 1193385 An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uip_process in net/ipv4/uip.c. CVE-2020-13988 SUSE Enterprise Storage 6:iscsiuio-0.7.8.2-13.42.1 SUSE Enterprise Storage 6:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Proxy 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Proxy 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Retail Branch Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-devel-2.0.876-13.42.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211164-1/ https://www.suse.com/security/cve/CVE-2020-13988.html CVE-2020-13988 https://bugzilla.suse.com/1179907 SUSE Bug 1179907 https://bugzilla.suse.com/1179908 SUSE Bug 1179908 https://bugzilla.suse.com/1193385 SUSE Bug 1193385 An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c. CVE-2020-17437 SUSE Enterprise Storage 6:iscsiuio-0.7.8.2-13.42.1 SUSE Enterprise Storage 6:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Proxy 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Proxy 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Retail Branch Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-devel-2.0.876-13.42.1 important 6.4 AV:N/AC:L/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211164-1/ https://www.suse.com/security/cve/CVE-2020-17437.html CVE-2020-17437 https://bugzilla.suse.com/1179907 SUSE Bug 1179907 https://bugzilla.suse.com/1179908 SUSE Bug 1179908 An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassembles fragmented packets fails to properly validate the total length of an incoming packet specified in its IP header, as well as the fragmentation offset value specified in the IP header. By crafting a packet with specific values of the IP header length and the fragmentation offset, attackers can write into the .bss section of the program (past the statically allocated buffer that is used for storing the fragmented data) and cause a denial of service in uip_reass() in uip.c, or possibly execute arbitrary code on some target architectures. CVE-2020-17438 SUSE Enterprise Storage 6:iscsiuio-0.7.8.2-13.42.1 SUSE Enterprise Storage 6:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-2.0.876-13.42.1 SUSE Enterprise Storage 6:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-BCL:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15 SP1-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server 15-LTSS:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server 15-LTSS:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1:open-iscsi-devel-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:iscsiuio-0.7.8.2-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-2.0.876-13.42.1 SUSE Linux Enterprise Server for SAP Applications 15:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Proxy 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Proxy 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Proxy 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Retail Branch Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Retail Branch Server 4.0:open-iscsi-devel-2.0.876-13.42.1 SUSE Manager Server 4.0:iscsiuio-0.7.8.2-13.42.1 SUSE Manager Server 4.0:libopeniscsiusr0_2_0-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-2.0.876-13.42.1 SUSE Manager Server 4.0:open-iscsi-devel-2.0.876-13.42.1 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211164-1/ https://www.suse.com/security/cve/CVE-2020-17438.html CVE-2020-17438 https://bugzilla.suse.com/1179907 SUSE Bug 1179907 https://bugzilla.suse.com/1179908 SUSE Bug 1179908