RHSA-2020:1933-01 -- Redhat targetcliID: oval:org.secpod.oval:def:66814 | Date: (C)2020-11-09 (M)2022-11-23 |
Class: PATCH | Family: unix |
The targetcli package contains an administration shell for configuring Internet Small Computer System Interface , Fibre Channel over Ethernet , and other SCSI targets, using the Target Core Mod/Linux-IO kernel target subsystem. FCoE users also need to install and use the fcoe-utils package. Security Fix: * targetcli: world writable /var/run/targetclid.sock allows unprivileged user to execute commands For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.