It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data.
4.4.0-200.2324.15.0-132.136~16.04.14.15.0-132.1365.4.0-62.70~18.04.15.4.0-62.705.8.0-38.43~20.04.14.4.0-200.232~14.04.1