3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
42.3%
CentOS Errata and Security Advisory CESA-2020:1167
Network Block Device (NBD) is a protocol for accessing hard disks and other disk-like devices over the network. The nbdkit toolkit utilizes NBD to create servers with minimal dependencies. The package contains plug-in support for the C and Python programming languages.
Security Fix(es):
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2020-April/032608.html
Affected packages:
nbdkit
nbdkit-basic-plugins
nbdkit-devel
nbdkit-example-plugins
nbdkit-plugin-python-common
nbdkit-plugin-python2
nbdkit-plugin-vddk
Upstream details at:
https://access.redhat.com/errata/RHSA-2020:1167
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 7 | x86_64 | nbdkit | < 1.8.0-3.el7 | nbdkit-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-basic-plugins | < 1.8.0-3.el7 | nbdkit-basic-plugins-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-devel | < 1.8.0-3.el7 | nbdkit-devel-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-example-plugins | < 1.8.0-3.el7 | nbdkit-example-plugins-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-plugin-python2 | < 1.8.0-3.el7 | nbdkit-plugin-python2-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-plugin-python-common | < 1.8.0-3.el7 | nbdkit-plugin-python-common-1.8.0-3.el7.x86_64.rpm |
CentOS | 7 | x86_64 | nbdkit-plugin-vddk | < 1.8.0-3.el7 | nbdkit-plugin-vddk-1.8.0-3.el7.x86_64.rpm |
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
42.3%