Descriptionusr/log.c in iscsid in open-iscsi (iscsi-initiator-utils) before 2.0-865 uses a semaphore with insecure permissions (world-writable/world-readable) for managing log messages using shared memory, which allows local users to cause a denial of service (hang) by grabbing the semaphore.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2007:017, published Fri, 17 Aug 2007 17:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 04:05:23 2013
CVE page last modified: Fri Oct 7 12:45:37 2022