22 matches found
CLSA-2026-1778007485 libnbd: Fix of CVE-2023-5215
CVE-2023-5215: fix nbdgetsize returning negative value for sizes larger than INT64MAX...
[SECURITY] Fedora 41 Update: rust-get-size-derive2-0.7.1-1.fc41
Derives the GetSize trait...
Fedora 41 : python-uv-build / ruff / rust-get-size-derive2 / rust-get-size2 / etc (2025-00e5b3d89c)
The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-00e5b3d89c advisory. uv / python-uv-build 0.9.7 https://github.com/astral-sh/uv/releases/tag/0.9.7 0.9.6 This release contains an upgrade to Astral's fork of asynczip, which...
Fedora 42 : python-uv-build / ruff / rust-get-size-derive2 / rust-get-size2 / etc (2025-e60a4ba4d7)
The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-e60a4ba4d7 advisory. uv / python-uv-build 0.9.7 https://github.com/astral-sh/uv/releases/tag/0.9.7 0.9.6 This release contains an upgrade to Astral's fork of asynczip, which...
[SECURITY] Fedora 43 Update: rust-get-size2-0.7.1-1.fc43
Determine the size in bytes an object occupies inside RAM...
[SECURITY] Fedora 43 Update: rust-get-size2-0.7.0-2.fc43
Determine the size in bytes an object occupies inside RAM...
[SECURITY] Fedora 42 Update: rust-get-size-derive2-0.7.0-1.fc42
Derives the GetSize trait...
[SECURITY] Fedora 41 Update: rust-get-size2-0.7.0-2.fc41
Determine the size in bytes an object occupies inside RAM...
[SECURITY] Fedora 41 Update: rust-get-size-derive2-0.7.0-1.fc41
Derives the GetSize trait...
Vulnerability of the ipoib_get_size() function in the drivers/infiniband/ulp/ipoib/ipoib_netlink.c module – This driver is part of the Linux operating system’s InfiniBand support, and it allows a hacker to cause a service failure.
Vulnerability of the ipoibgetsize function in the drivers/infiniband/ulp/ipoib/ipoibnetlink.c module – The Linux kernel’s InfiniBand support driver is vulnerable due to a reliance on the NULL pointer dereferencing. Exploiting this vulnerability could allow an attacker to cause a service failure...
afarray (>=0.1.0 <=0.15.1), b-table (>=0.1.0 <=0.2.1) +38 more potentially affected by unknown CVE via get-size-derive (>=0.1.2 <=0.1.3)
get-size-derive CARGO version =0.1.2, =0.1.0, =0.1.0, =0.1.0, =0.10.0, =0.1.0, =0.8.0, =0.1.0, =0.1.0, =0.3.1, =0.9.1, =0.0.6, =0.1.0, =0.8.0, =0.9.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0427...
RUSTSEC-2024-0425 get-size is unmaintained
get-size's maintainer seems to be unreachable, with no commits and releases pushed for 1 year and no activity on the GitHub repo. get-size also depends on get-size-derive 0.1.3, which uses attribute-derive ^0.6 a version of the crate which uses the yanked crate proc-macro-error. Possible...
get-size-derive is unmaintained
get-size-derive's maintainer seems to be unreachable, with no commits and releases pushed for 1 year and no activity on the GitHub repo. get-size-derive also depends on attribute-derive ^0.6 a version of the crate which uses the yanked crate proc-macro-error. Possible Alternatives - get-size-deri...
afarray (>=0.1.0 <=0.15.1), b-table (>=0.1.0 <=0.2.1) +42 more potentially affected by unknown CVE via get-size (>=0.1.3 <=0.1.4)
get-size CARGO version =0.1.3, =0.1.0, =0.1.0, =0.1.0, =0.10.0, =0.1.0, =0.8.0, =0.1.0, =0.3.1, =0.3.3, =0.1.0, =0.9.1, =0.14.0 - pathlink =0.1.0 - poseidon-bn128 =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0425...
SUSE CVE-2023-5215
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...
DEBIAN-CVE-2023-5215
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...
AZL-31095 CVE-2023-5215 affecting package libnbd for versions less than 1.12.1-3
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...
UBUNTU-CVE-2023-5215
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...
PT-2023-9291 · Libnbd +5 · Libnbd +5
Name of the Vulnerable Software and Affected Versions: libnbd affected versions not specified Description: A flaw was found in libnbd where a server can reply with a block size larger than 2^63, which is a 64-bit unsigned value according to the NBD spec. This issue could lead to an application...
libnbd Security Vulnerabilities
libnbd is a library for editing NBD Network Block Device clients. A security vulnerability exists in libnbd that stems from an inability to properly handle the return value of the nbdgetsize function, which could lead to application crashes or other unexpected behavior on the client...