2 matches found
CVE-2019-20429
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic via a modified lmbufcount field due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between sptlrpcsvcunwraprequest and lustremsghdrsizev2...
CVE-2019-20429
The CVE-2019-20429 issue is in Lustre prior to version 2.12.3, where the ptlrpc module can perform an out-of-bounds read and panic. The root cause is a lack of validation for specific client packet fields, caused by interaction between sptlrpc_svc_unwrap_request and lustre_msg_hdr_size_v2. Conseq...