Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
202
security advisorymoderateauthenticationopenSUSE Leap 15.6: tgt Moderate CHAP Bypass CVE-2024-45751 Advisory
An update that solves one vulnerability can now be installed.. # Security update for tgt Announcement ID: SUSE-SU-2025:02740-1 Release Date: 2025-08-08T09:12:01Z Rating: moderate References: * bsc#1230360 Cross-References: * CVE-2024-45751 CVSS scores: * CVE-2024-45751 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-45751 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for tgt fixes the following issues: * CVE-2024-45751: Fixed CHAP authentication bypass in user-space Linux target framework (bsc#1230360) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-2740=1 openSUSE-SLE-15.6-2025-2740=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2740=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2740=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 * BasesystemModule 15-SP7 (aarch64 ppc64le s390x x86_64) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-45751.html * https://bugzilla.suse.com/show_bug.cgi?id=1230360 . A crucial patch for openSUSE tackling moderate vulnerabilities in tgt caused by an authentication weakness. Take action swiftly.. openSUSE update tgt authentication security fix. . LinuxSecurity.com Team
Aug 08, 2025
OpenSUSE
100
security advisorymoderateSuSESUSE: tgt Moderate CHAP Bypass Vulnerability 2025:02740-1
* bsc#1230360 Cross-References: * CVE-2024-45751 . # Security update for tgt Announcement ID: SUSE-SU-2025:02740-1 Release Date: 2025-08-08T09:12:01Z Rating: moderate References: * bsc#1230360 Cross-References: * CVE-2024-45751 CVSS scores: * CVE-2024-45751 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-45751 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for tgt fixes the following issues: * CVE-2024-45751: Fixed CHAP authentication bypass in user-space Linux target framework (bsc#1230360) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-2740=1 openSUSE-SLE-15.6-2025-2740=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2740=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2740=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 * Basesystem Module 15-SP7(aarch64 ppc64le s390x x86_64) * tgt-debugsource-1.0.85-150600.10.3.1 * tgt-1.0.85-150600.10.3.1 * tgt-debuginfo-1.0.85-150600.10.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-45751.html * https://bugzilla.suse.com/show_bug.cgi?id=1230360 . The latest SUSE security bulletin for September highlights a significant CHAP authentication bypass vulnerability associated with CVE-2024-45751, categorized as moderate in nature.. SUSE tgt authentication patch security CVE-2024-45751. . LinuxSecurity.com Team
Aug 08, 2025
SuSE
202
security advisorymoderateauthentication bypassopenSUSE Leap 15.4: tgt Moderate CHAP Auth Bypass SUSE-2025:02591-1
An update that solves one vulnerability can now be installed.. # Security update for tgt Announcement ID: SUSE-SU-2025:02591-1 Release Date: 2025-08-01T14:08:43Z Rating: moderate References: * bsc#1230360 Cross-References: * CVE-2024-45751 CVSS scores: * CVE-2024-45751 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-45751 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.4 An update that solves one vulnerability can now be installed. ## Description: This update for tgt fixes the following issues: * CVE-2024-45751: Fixed CHAP authentication bypass in user-space Linux target framework (bsc#1230360) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2591=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * tgt-debuginfo-1.0.85-150400.3.6.1 * tgt-debugsource-1.0.85-150400.3.6.1 * tgt-1.0.85-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-45751.html * https://bugzilla.suse.com/show_bug.cgi?id=1230360 . A patch for tgt in openSUSE Leap 15.4 addresses significant vulnerabilities related to CHAP authentication loopholes. Urgent measures advised.. openSUSE,tgt M,CHAP bypass,security update. . LinuxSecurity.com Team
Aug 01, 2025
OpenSUSE
197
security advisorycriticalsoftware updateDebian 11: DLA-3976-1 critical: tgt challenge predictability issue
An issue has been found in tgt, Linux SCSI target user-space daemon and tools. The issue was related to using rand() without proper seed, resulting in identical sequences of challenges. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3976-1
Nov 30, 2024
•Critical
Debian LTS
172
security advisorycriticalUbuntuUbuntu 20.04 LTS USN-7024-1 Critical: tgt Identical Challenges
tgt could be made to generate identical sequence of challenges.. ========================================================================== Ubuntu Security Notice USN-7024-1 September 19, 2024 tgt vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: tgt could be made to generate identical sequence of challenges. Software Description: - tgt: Linux SCSI target user-space daemon and tools Details: It was discovered that tgt attempts to achieve entropy by calling rand without srand. The PRNG seed is always 1, and thus the sequence of challenges is always identical. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS tgt 1:1.0.79-2ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7024-1 CVE-2024-45751 Package Information: . The Ubuntu Security Announcement USN-7024-1 highlights a tgt vulnerability impacting Ubuntu 20.04 LTS, requiring urgent action.. Ubuntu 20.04, tgt Updates, Security Notice, Linux Daemon. . Severity: Critical. LinuxSecurity.com Team
Sep 19, 2024
•Critical
Ubuntu
172
security advisorydenial of servicecritical updateUbuntu 11.04/10.10: USN-1156-1 Critical: tgt DoS Threat
An attacker could send crafted input to tgt and cause it to crash or run arbitrary programs.. =========================================================================Ubuntu Security Notice USN-1156-1 June 21, 2011 tgt vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.04 - Ubuntu 10.10 Summary: An attacker could send crafted input to tgt and cause it to crash or run arbitrary programs. Software Description: - tgt: Linux SCSI target user-space tools Details: It was discovered that tgt incorrectly handled long iSCSI name strings, and invalid PDUs. A remote attacker could exploit this to cause tgt to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 10.10. (CVE-2010-2221) Emmanuel Bouillon discovered that tgt incorrectly handled certain iSCSI logins. A remote attacker could exploit this to cause tgt to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2011-0001) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: tgt 1:1.0.13-0ubuntu2.1 Ubuntu 10.10: tgt 1:1.0.4-1ubuntu4.1 In general, a standard system update will make all the necessary changes. References: CVE-2010-2221, CVE-2011-0001 Package Information: https://launchpad.net/ubuntu/+source/tgt/1:1.0.13-0ubuntu2.1 https://launchpad.net/ubuntu/+source/tgt/1:1.0.4-1ubuntu4.1 . Mitigating tgt weaknesses in Ubuntu 11.04 and 10.10 through essential patches for heightened protection.. tgt vulnerabilities, Ubuntu security, denial of service, critical updates. . Severity: Critical. LinuxSecurity.com Team
Jun 21, 2011
•Critical
Ubuntu
87
security advisorydenial of servicebuffer overflowDebian: DSA-2210-2 Critical: TGT Buffer Overflow Denial of Service
Emmanuel Bouillon discovered a double free in tgt, the Linux SCSI target user-space tools, which could lead to denial of service. The oldstable distribution (lenny) doesn't include tgt. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2209-1
Apr 02, 2011
•Critical
Debian
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!