CVE-2011-0001

EPSS 7.6%

tgt - double free

Published: 3/15/2011Modified: 4/28/2026

Description

Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown vectors related to a buffer overflow during iscsi login. NOTE: some of these details are obtained from third party information.

Affected packages (2)

Debian/tgtfrom 0, < 1:1.0.4-3
Debian/tgtfrom 0, < 1:1.0.4-2squeeze1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-0001