On 02/04/2020 01:04, Alex Murray wrote: > Upstream have merged in a fix for the world-writable targetcli-fb daemon > socket - https://github.com/open-iscsi/targetcli-fb/issues/162 - and > assigned CVE-2020-10699 for it - but there has been no official release. > With this fix in place, I would be happy to change the NACK to an ACK > for targetcli-fb. > > ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-10699
Alex, I left the targetcli-fb MIR attempt to be handled at 20.10. I'll continue this shortly and will handle this. Thanks for the highlight. -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1854362 Title: [MIR] ceph-iscsi, tcmu, python-configshell-fb, python-rtslib-fb, urwid, targetcli-fb To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ceph-iscsi/+bug/1854362/+subscriptions -- Ubuntu-server-bugs mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
