Upstream information
Description
An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via the sysfs file system, at /sys/class/iscsi_transport/$TRANSPORT_NAME/handle. When read, the show_transport_handle function (in drivers/scsi/scsi_transport_iscsi.c) is called, which leaks the handle. This handle is actually the pointer to an iscsi_transport struct in the kernel module's global variables.SUSE information
Overall state of this security issue: Pending
This issue is currently rated as having important severity.
National Vulnerability Database | |
---|---|
Base Score | 3.6 |
Vector | AV:L/AC:L/Au:N/C:P/I:N/A:P |
Access Vector | Local |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | Partial |
Integrity Impact | None |
Availability Impact | Partial |
National Vulnerability Database | SUSE | |
---|---|---|
Base Score | 4.4 | 7.1 |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H |
Access Vector | Local | Local |
Access Complexity | Low | Low |
Privileges Required | Low | Low |
User Interaction | None | None |
Scope | Unchanged | Unchanged |
Confidentiality Impact | Low | High |
Integrity Impact | None | None |
Availability Impact | Low | High |
CVSSv3 Version | 3.1 | 3.1 |
- SUSE-SU-2021:1046-1, published Wed Apr 7 10:15:51 UTC 2021
- SUSE-SU-2021:1074-1, published Wed Apr 7 10:17:12 UTC 2021
- SUSE-SU-2021:1075-1, published Wed Apr 7 13:16:11 UTC 2021
- SUSE-SU-2021:1145-1, published Mon Apr 12 16:16:14 UTC 2021
- SUSE-SU-2021:1148-1, published Mon Apr 12 16:21:54 UTC 2021
- SUSE-SU-2021:1175-1, published Tue Apr 13 19:27:10 UTC 2021
- SUSE-SU-2021:1176-1, published Tue Apr 13 19:35:39 UTC 2021
- SUSE-SU-2021:1177-1, published Tue Apr 13 19:18:15 UTC 2021
- SUSE-SU-2021:1210-1, published Thu Apr 15 16:31:38 UTC 2021
- SUSE-SU-2021:1211-1, published Thu Apr 15 19:32:10 UTC 2021
- SUSE-SU-2021:1238-1, published Fri Apr 16 13:18:25 UTC 2021
- openSUSE-SU-2021:0532-1, published Sat Apr 10 12:39:23 2021
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise High Availability 12 SP5 |
| Patchnames: SUSE-SLE-HA-12-SP5-2021-1210 |
SUSE Linux Enterprise High Availability 15 SP2 |
| Patchnames: SUSE-SLE-Product-HA-15-SP2-2021-1238 |
SUSE Linux Enterprise Live Patching 12 SP4 |
| Patchnames: SUSE-SLE-Live-Patching-12-SP4-2021-1075 SUSE-SLE-Live-Patching-12-SP4-2021-1076 SUSE-SLE-Live-Patching-12-SP4-2021-1077 SUSE-SLE-Live-Patching-12-SP4-2021-1078 SUSE-SLE-Live-Patching-12-SP4-2021-1079 SUSE-SLE-Live-Patching-12-SP4-2021-1080 SUSE-SLE-Live-Patching-12-SP4-2021-1081 |
SUSE Linux Enterprise Live Patching 12 SP5 |
| Patchnames: SUSE-SLE-Live-Patching-12-SP5-2021-1034 SUSE-SLE-Live-Patching-12-SP5-2021-1035 SUSE-SLE-Live-Patching-12-SP5-2021-1036 SUSE-SLE-Live-Patching-12-SP5-2021-1037 SUSE-SLE-Live-Patching-12-SP5-2021-1038 SUSE-SLE-Live-Patching-12-SP5-2021-1039 SUSE-SLE-Live-Patching-12-SP5-2021-1040 SUSE-SLE-Live-Patching-12-SP5-2021-1041 SUSE-SLE-Live-Patching-12-SP5-2021-1042 SUSE-SLE-Live-Patching-12-SP5-2021-1043 SUSE-SLE-Live-Patching-12-SP5-2021-1044 SUSE-SLE-Live-Patching-12-SP5-2021-1045 SUSE-SLE-Live-Patching-12-SP5-2021-1046 SUSE-SLE-Live-Patching-12-SP5-2021-1210 |
SUSE Linux Enterprise Module for Basesystem 15 SP2 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP2-2021-1238 |
SUSE Linux Enterprise Module for Development Tools 15 SP2 |
| Patchnames: SUSE-SLE-Module-Development-Tools-15-SP2-2021-1238 |
SUSE Linux Enterprise Module for Legacy Software 15 SP2 |
| Patchnames: SUSE-SLE-Module-Legacy-15-SP2-2021-1238 |
SUSE Linux Enterprise Module for Live Patching 15 SP1 |
| Patchnames: SUSE-SLE-Module-Live-Patching-15-SP1-2021-1052 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1053 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1054 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1055 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1056 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1057 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1058 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1059 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1060 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1061 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1062 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1063 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1083 SUSE-SLE-Module-Live-Patching-15-SP1-2021-1093 |
SUSE Linux Enterprise Module for Live Patching 15 SP2 |
| Patchnames: SUSE-SLE-Module-Live-Patching-15-SP2-2021-1064 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1065 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1066 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1084 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1085 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1086 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1087 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1088 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1089 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1090 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1091 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1092 SUSE-SLE-Module-Live-Patching-15-SP2-2021-1238 |
SUSE Linux Enterprise Module for Live Patching 15 |
| Patchnames: SUSE-SLE-Module-Live-Patching-15-2021-1047 SUSE-SLE-Module-Live-Patching-15-2021-1048 SUSE-SLE-Module-Live-Patching-15-2021-1049 SUSE-SLE-Module-Live-Patching-15-2021-1050 SUSE-SLE-Module-Live-Patching-15-2021-1051 SUSE-SLE-Module-Live-Patching-15-2021-1082 |
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 |
| Patchnames: SUSE-SLE-Module-Development-Tools-OBS-15-SP2-2021-1177 SUSE-SLE-Module-Development-Tools-OBS-15-SP2-2021-1238 |
SUSE Linux Enterprise Module for Public Cloud 15 SP2 |
| Patchnames: SUSE-SLE-Module-Public-Cloud-15-SP2-2021-1177 |
SUSE Linux Enterprise Module for Realtime packages 15 SP2 |
| Patchnames: SUSE-SLE-Module-RT-15-SP2-2021-1211 |
SUSE Linux Enterprise Real Time Extension 12 SP5 |
| Patchnames: SUSE-SLE-RT-12-SP5-2021-1176 |
SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON SUSE Linux Enterprise Server for SAP Applications 12 SP2-LTSS-ERICSSON |
| Patchnames: SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1142 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1143 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1144 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1145 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1146 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1147 SUSE-SLE-SERVER-12-SP2-LTSS-ERICSSON-2021-1148 |
SUSE Linux Enterprise Server 12 SP2-LTSS-SAP SUSE Linux Enterprise Server for SAP Applications 12 SP2-LTSS-SAP |
| Patchnames: SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1142 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1143 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1144 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1145 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1146 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1147 SUSE-SLE-SERVER-12-SP2-LTSS-SAP-2021-1148 |
SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS |
| Patchnames: SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1067 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1068 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1069 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1070 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1071 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1072 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1073 SUSE-SLE-SERVER-12-SP3-ESPOS-2021-1074 |
SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS |
| Patchnames: SUSE-SLE-SERVER-12-SP3-2021-1067 SUSE-SLE-SERVER-12-SP3-2021-1068 SUSE-SLE-SERVER-12-SP3-2021-1069 SUSE-SLE-SERVER-12-SP3-2021-1070 SUSE-SLE-SERVER-12-SP3-2021-1071 SUSE-SLE-SERVER-12-SP3-2021-1072 SUSE-SLE-SERVER-12-SP3-2021-1073 SUSE-SLE-SERVER-12-SP3-2021-1074 |
SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 |
| Patchnames: SUSE-SLE-SERVER-12-SP5-2021-1175 SUSE-SLE-SERVER-12-SP5-2021-1210 |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 |
| Patchnames: SUSE-SLE-SAP-12-SP3-2021-1067 SUSE-SLE-SAP-12-SP3-2021-1068 SUSE-SLE-SAP-12-SP3-2021-1069 SUSE-SLE-SAP-12-SP3-2021-1070 SUSE-SLE-SAP-12-SP3-2021-1071 SUSE-SLE-SAP-12-SP3-2021-1072 SUSE-SLE-SAP-12-SP3-2021-1073 SUSE-SLE-SAP-12-SP3-2021-1074 |
SUSE Linux Enterprise Software Development Kit 12 SP5 |
| Patchnames: SUSE-SLE-SDK-12-SP5-2021-1210 |
SUSE Linux Enterprise Workstation Extension 12 SP5 |
| Patchnames: SUSE-SLE-WE-12-SP5-2021-1210 |
SUSE Linux Enterprise Workstation Extension 15 SP2 |
| Patchnames: SUSE-SLE-Product-WE-15-SP2-2021-1238 |
SUSE MicroOS 5.0 |
| Patchnames: SUSE-SUSE-MicroOS-5.0-2021-1238 |
openSUSE Leap 15.2 |
| Patchnames: openSUSE-2021-532 |
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.
Product(s) | Source package | State |
---|---|---|
Carwos 1 | kernel-source-rt | Affected |
HPE Helion OpenStack 8 | kernel-default | Affected |
HPE Helion OpenStack 8 | kernel-source | Affected |
HPE Helion OpenStack 8 | kernel-source-azure | Affected |
SUSE CaaS Platform 4.0 | kernel-default | Affected |
SUSE CaaS Platform 4.0 | kernel-source | Affected |
SUSE Enterprise Storage 6 | kernel-default | Affected |
SUSE Enterprise Storage 6 | kernel-source | Affected |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-source | Released |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 LTSS | kernel-default | Affected |
SUSE Linux Enterprise High Performance Computing 15 LTSS | kernel-source | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS | kernel-default | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Module for Basesystem 15 SP2 | kernel-default | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP2 | kernel-source | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP2 | kernel-default | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP2 | kernel-source | Released |
SUSE Linux Enterprise Module for Public Cloud 15 | kernel-source-azure | Affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP1 | kernel-source-azure | Affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP2 | kernel-source-azure | Released |
SUSE Linux Enterprise Point of Service 11 SP3 | kernel-default | Affected |
SUSE Linux Enterprise Point of Service 11 SP3 | kernel-source | Affected |
SUSE Linux Enterprise Point of Service Image Server 12 | kernel-default | Unsupported |
SUSE Linux Enterprise Point of Service Image Server 12 | kernel-source | Unsupported |
SUSE Linux Enterprise Real Time 12 SP4 | kernel-source-rt | Unsupported |
SUSE Linux Enterprise Real Time 12 SP5 | kernel-source-rt | Released |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP2 BCL | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP2 BCL | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP2 ESPOS | kernel-default | Unsupported |
SUSE Linux Enterprise Server 12 SP2 ESPOS | kernel-source | Unsupported |
SUSE Linux Enterprise Server 12 SP2 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP2 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP2 LTSS ERICSSON | kernel-default | Analysis |
SUSE Linux Enterprise Server 12 SP2 LTSS ERICSSON | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP2 LTSS SAP | kernel-default | Analysis |
SUSE Linux Enterprise Server 12 SP2 LTSS SAP | kernel-source | Analysis |
SUSE Linux Enterprise Server 12 SP3 BCL | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP3 BCL | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP3 BCL | kernel-source-azure | Affected |
SUSE Linux Enterprise Server 12 SP3 ESPOS | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP3 ESPOS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP3 ESPOS | kernel-source-azure | Affected |
SUSE Linux Enterprise Server 12 SP3 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP3 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP3 LTSS | kernel-source-azure | Affected |
SUSE Linux Enterprise Server 12 SP4 ESPOS | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP4 ESPOS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP4 ESPOS | kernel-source-azure | Affected |
SUSE Linux Enterprise Server 12 SP4 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 12 SP4 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server 12 SP4 LTSS | kernel-source-azure | Affected |
SUSE Linux Enterprise Server 12 SP5 | kernel-default | Released |
SUSE Linux Enterprise Server 12 SP5 | kernel-source | Released |
SUSE Linux Enterprise Server 12 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise Server 15 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 15 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server 15 SP1 Business Critical Linux | kernel-default | Affected |
SUSE Linux Enterprise Server 15 SP1 Business Critical Linux | kernel-source | Affected |
SUSE Linux Enterprise Server 15 SP1 LTSS | kernel-default | Affected |
SUSE Linux Enterprise Server 15 SP1 LTSS | kernel-source | Affected |
SUSE Linux Enterprise Server ESPOS 15 | kernel-default | Affected |
SUSE Linux Enterprise Server ESPOS 15 | kernel-source | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 | kernel-default | Unsupported |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 | kernel-source | Unsupported |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 | kernel-default | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 | kernel-source | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 | kernel-source-azure | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-source-azure | Affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-default | Released |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-source | Released |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 | kernel-default | Affected |
SUSE Linux Enterprise Server for SAP Applications 15 | kernel-source | Affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP1 | kernel-default | Affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP1 | kernel-source | Affected |
SUSE Manager Proxy 4.0 | kernel-default | Affected |
SUSE Manager Proxy 4.0 | kernel-source | Affected |
SUSE Manager Retail Branch Server 4.0 | kernel-default | Affected |
SUSE Manager Retail Branch Server 4.0 | kernel-source | Affected |
SUSE Manager Server 4.0 | kernel-default | Affected |
SUSE Manager Server 4.0 | kernel-source | Affected |
SUSE OpenStack Cloud 7 | kernel-default | Affected |
SUSE OpenStack Cloud 7 | kernel-source | Affected |
SUSE OpenStack Cloud 8 | kernel-default | Affected |
SUSE OpenStack Cloud 8 | kernel-source | Affected |
SUSE OpenStack Cloud 8 | kernel-source-azure | Affected |
SUSE OpenStack Cloud 9 | kernel-default | Affected |
SUSE OpenStack Cloud 9 | kernel-source | Affected |
SUSE OpenStack Cloud 9 | kernel-source-azure | Affected |
SUSE OpenStack Cloud Crowbar 8 | kernel-default | Affected |
SUSE OpenStack Cloud Crowbar 8 | kernel-source | Affected |
SUSE OpenStack Cloud Crowbar 8 | kernel-source-azure | Affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-default | Affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-source | Affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-source-azure | Affected |
SUSE Real Time Module | kernel-source-rt | Released |