Security Information / 2011 / Security Information -- DSA-2209-1 tgt

Debian Security Advisory

DSA-2209-1 tgt -- double free

Date Reported:

02 Apr 2011

Affected Packages:

tgt

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2011-0001.

More information:

Emmanuel Bouillon discovered a double free in tgt, the Linux SCSI target user-space tools, which could lead to denial of service.

The oldstable distribution (lenny) doesn't include tgt.

For the stable distribution (squeeze), this problem has been fixed in version 1:1.0.4-2squeeze1.

For the unstable distribution (sid), this problem has been fixed in version 1:1.0.4-3.

We recommend that you upgrade your tgt packages.