CVE-2021-3139

Related Files

Red Hat Security Advisory 2021-2041-01

Posted May 19, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2041-01 - Red Hat OpenShift Container Storage is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Container Storage is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. Issues addressed include bypass and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability

systems | linux, redhat

advisories | CVE-2020-25678, CVE-2020-26160, CVE-2020-26289, CVE-2020-28362, CVE-2020-7608, CVE-2020-7774, CVE-2020-8565, CVE-2021-20305, CVE-2021-3114, CVE-2021-3139, CVE-2021-3449, CVE-2021-3450, CVE-2021-3528

SHA-256 | 207485ff1991adec31c517e8d791b7e6d4e2eb37215ab5caba07707d934fa380

Download | Favorite | View

Red Hat Security Advisory 2021-1518-01

Posted May 7, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1518-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. The ceph-ansible package provides Ansible playbooks for installing, maintaining, and upgrading Red Hat Ceph Storage. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. The tcmu-runner packages provide a service that handles the complexity of the LIO kernel target's userspace passthrough interface. It presents a C plugin API for extension modules that handle SCSI requests in ways not possible or suitable to be handled by LIO's in-kernel backstores. Issues addressed include denial of service and server-side request forgery vulnerabilities.

tags | advisory, denial of service, kernel, vulnerability

systems | linux, redhat

advisories | CVE-2020-12059, CVE-2020-13379, CVE-2020-27781, CVE-2021-3139

SHA-256 | e87fb4791772030f72c602aaae9c15e3ccdeb0c201ea244532321266dcf4337a

Download | Favorite | View

Red Hat Security Advisory 2021-1452-01

Posted Apr 29, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1452-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. The ceph-ansible package provides Ansible playbooks for installing, maintaining, and upgrading Red Hat Ceph Storage. Perf Tools is a collection of performance analysis tools, including a high performance multi-threaded malloc() implementation that works particularly well with threads and STL, a thread-friendly heap-checker, a heap profiler, and a cpu-profiler.

tags | advisory

systems | linux, redhat

advisories | CVE-2020-25678, CVE-2021-3139

SHA-256 | 5d41edca2cc85cc097fff41b21e2b23e9b187fa52958e3c5cb6066efe04a15fb

Download | Favorite | View

Ubuntu Security Notice USN-4707-1

Posted Jan 28, 2021

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4707-1 - It was discovered that TCMU lacked a check for transport-layer restrictions, allowing remote attackers to read or write files via directory traversal in an XCOPY request.

tags | advisory, remote

systems | linux, ubuntu

advisories | CVE-2021-3139

SHA-256 | d473dee44de4b75bcb27ef0b49ecb25cee9ff1c51e5f0ccf25581627b9d4e8d2

Download | Favorite | View