• info
• discussion
• exploit
• solution
• references

iSCSI Enterprise Target and tgt Multiple Format String Vulnerabilities

Solution:
Updates are available. Please see the references for more information.


Slackware Linux 13.0 x86_64

• Slackware mozilla-firefox-3.6.3-x86_64-1_slack13.0.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/package s/mozilla-firefox-3.6.3-x86_64-1_slack13.0.txz

Slackware Linux x86_64 -current

• Slackware mozilla-firefox-3.6.3-x86_64-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/ xap/mozilla-firefox-3.6.3-x86_64-1.txz

Debian Linux 5.0 hppa

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_hppa.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_hppa.deb

Debian Linux 5.0 ia-64

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_ia64.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_ia64.deb

Debian Linux 5.0 m68k

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb

Debian Linux 5.0 arm

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_arm.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_arm.deb

Slackware Linux 13.0

• Slackware mozilla-firefox-3.6.3-i686-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/ mozilla-firefox-3.6.3-i686-1.txz

Debian Linux 5.0 armel

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_armel.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_armel.deb

MandrakeSoft Enterprise Server 5 x86_64

• Mandriva dkms-iscsitarget-0.4.16-4.1mdvmes5.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva iscsitarget-0.4.16-4.1mdvmes5.1.x86_64.rpm
  http://www.mandriva.com/en/download/

Slackware Linux 12.2

• Slackware mozilla-firefox-3.0.19-i686-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/ mozilla-firefox-3.0.19-i686-1.tgz

Debian Linux 5.0

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb

Debian Linux 5.0 alpha

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_alpha.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_alpha.deb

Debian Linux 5.0 amd64

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_amd64.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_amd64.deb

Debian Linux 5.0 ia-32

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_i386.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_i386.deb

Debian Linux 5.0 mips

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_mips.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_mips.deb

MandrakeSoft Enterprise Server 5

• Mandriva iscsitarget-0.4.16-4.1mdvmes5.1.i586.rpm
  http://www.mandriva.com/en/download/

Debian Linux 5.0 s/390

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_s390.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_s390.deb

Debian Linux 5.0 mipsel

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_mipsel.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_mipsel.deb

Debian Linux 5.0 powerpc

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_powerpc.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_powerpc.deb

Debian Linux 5.0 sparc

• Debian iscsitarget-source_0.4.16+svn162-3.1+lenny1_all.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget -source_0.4.16+svn162-3.1+lenny1_all.deb


• Debian iscsitarget_0.4.16+svn162-3.1+lenny1_sparc.deb
  http://security.debian.org/pool/updates/main/i/iscsitarget/iscsitarget _0.4.16+svn162-3.1+lenny1_sparc.deb