{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2013-06-01T00:00:00.000Z","descriptions":[{"lang":"en","value":"Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2013-12-01T18:08:03.000Z","orgId":"ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28","shortName":"Chrome"},"references":[{"name":"openSUSE-SU-2013:1043","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00018.html"},{"name":"openSUSE-SU-2013:1005","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00011.html"},{"name":"[oss-security] 20130601 CVE-2013-2850: Linux kernel iSCSI target heap overflow","tags":["mailing-list","x_refsource_MLIST"],"url":"http://www.openwall.com/lists/oss-security/2013/06/01/2"},{"tags":["x_refsource_CONFIRM"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cea4dcfdad926a27a18e188720efe0f2c9403456"},{"name":"SUSE-SU-2013:0845","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00017.html"},{"name":"USN-1844-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/USN-1844-1"},{"name":"USN-1846-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/USN-1846-1"},{"tags":["x_refsource_CONFIRM"],"url":"https://github.com/torvalds/linux/commit/cea4dcfdad926a27a18e188720efe0f2c9403456"},{"tags":["x_refsource_CONFIRM"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=968036"},{"name":"USN-1845-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/USN-1845-1"},{"name":"USN-1847-1","tags":["vendor-advisory","x_refsource_UBUNTU"],"url":"http://www.ubuntu.com/usn/USN-1847-1"},{"name":"openSUSE-SU-2013:1042","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.html"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"security@google.com","ID":"CVE-2013-2850","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Heap-based buffer overflow in the iscsi_add_notunderstood_response function in drivers/target/iscsi/iscsi_target_parameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service (memory corruption and OOPS) or possibly execute arbitrary code via a long key that is not properly handled during construction of an error-response packet."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"openSUSE-SU-2013:1043","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00018.html"},{"name":"openSUSE-SU-2013:1005","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00011.html"},{"name":"[oss-security] 20130601 CVE-2013-2850: Linux kernel iSCSI target heap overflow","refsource":"MLIST","url":"http://www.openwall.com/lists/oss-security/2013/06/01/2"},{"name":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=cea4dcfdad926a27a18e188720efe0f2c9403456","refsource":"CONFIRM","url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=cea4dcfdad926a27a18e188720efe0f2c9403456"},{"name":"SUSE-SU-2013:0845","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00017.html"},{"name":"USN-1844-1","refsource":"UBUNTU","url":"http://www.ubuntu.com/usn/USN-1844-1"},{"name":"USN-1846-1","refsource":"UBUNTU","url":"http://www.ubuntu.com/usn/USN-1846-1"},{"name":"https://github.com/torvalds/linux/commit/cea4dcfdad926a27a18e188720efe0f2c9403456","refsource":"CONFIRM","url":"https://github.com/torvalds/linux/commit/cea4dcfdad926a27a18e188720efe0f2c9403456"},{"name":"https://bugzilla.redhat.com/show_bug.cgi?id=968036","refsource":"CONFIRM","url":"https://bugzilla.redhat.com/show_bug.cgi?id=968036"},{"name":"USN-1845-1","refsource":"UBUNTU","url":"http://www.ubuntu.com/usn/USN-1845-1"},{"name":"USN-1847-1","refsource":"UBUNTU","url":"http://www.ubuntu.com/usn/USN-1847-1"},{"name":"openSUSE-SU-2013:1042","refsource":"SUSE","url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.html"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T15:52:20.080Z"},"title":"CVE Program Container","references":[{"name":"openSUSE-SU-2013:1043","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00018.html"},{"name":"openSUSE-SU-2013:1005","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00011.html"},{"name":"[oss-security] 20130601 CVE-2013-2850: Linux kernel iSCSI target heap overflow","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2013/06/01/2"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cea4dcfdad926a27a18e188720efe0f2c9403456"},{"name":"SUSE-SU-2013:0845","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00017.html"},{"name":"USN-1844-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-1844-1"},{"name":"USN-1846-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-1846-1"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://github.com/torvalds/linux/commit/cea4dcfdad926a27a18e188720efe0f2c9403456"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=968036"},{"name":"USN-1845-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-1845-1"},{"name":"USN-1847-1","tags":["vendor-advisory","x_refsource_UBUNTU","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-1847-1"},{"name":"openSUSE-SU-2013:1042","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.html"}]}]},"cveMetadata":{"assignerOrgId":"ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28","assignerShortName":"Chrome","cveId":"CVE-2013-2850","datePublished":"2013-06-07T10:00:00.000Z","dateReserved":"2013-04-11T00:00:00.000Z","dateUpdated":"2024-08-06T15:52:20.080Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}