First published: Mon Mar 30 2015(Updated: )
The modern style negotiation in Network Block Device (nbd-server) 2.9.22 through 3.3 allows remote attackers to cause a denial of service (root process termination) by (1) closing the connection during negotiation or (2) specifying a name for a non-existent export.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Wouter Verhelst Nbd | =2.9.3 | |
Wouter Verhelst Nbd | =2.9.4 | |
Wouter Verhelst Nbd | =2.9.5 | |
Wouter Verhelst Nbd | =2.9.6 | |
Wouter Verhelst Nbd | =2.9.7 | |
Wouter Verhelst Nbd | =2.9.8 | |
Wouter Verhelst Nbd | =2.9.9 | |
Wouter Verhelst Nbd | =2.9.22 | |
Wouter Verhelst Nbd | =2.9.23 | |
Wouter Verhelst Nbd | =2.9.24 | |
Wouter Verhelst Nbd | =2.9.25 | |
Wouter Verhelst Nbd | =3.0 | |
Wouter Verhelst Nbd | =3.1 | |
Wouter Verhelst Nbd | =3.1.1 | |
Wouter Verhelst Nbd | =3.2 | |
Wouter Verhelst Nbd | =3.3 | |
debian/nbd | 1:3.19-3+deb10u1 1:3.21-1+deb11u1 1:3.24-1.1 1:3.25-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.