Headline
Ubuntu Security Notice USN-7024-1
Ubuntu Security Notice 7024-1 - It was discovered that tgt attempts to achieve entropy by calling rand without srand. The PRNG seed is always 1, and thus the sequence of challenges is always identical.
==========================================================================Ubuntu Security Notice USN-7024-1September 19, 2024tgt vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:tgt could be made to generate identical sequence of challenges.Software Description:- tgt: Linux SCSI target user-space daemon and toolsDetails:It was discovered that tgt attempts to achieve entropyby calling rand without srand. The PRNG seed is always 1,and thus the sequence of challenges is always identical.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS tgt 1:1.0.79-2ubuntu1.1In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-7024-1 CVE-2024-45751Package Information: https://launchpad.net/ubuntu/+source/tgt/1:1.0.79-2ubuntu1.1