10 matches found
EUVD-2025-204536
A flaw was found in libnbd. A malicious actor could exploit this by convincing libnbd to open a specially crafted Uniform Resource Identifier URI. This vulnerability arises because non-standard hostnames starting with '-o' are incorrectly interpreted as arguments to the Secure Shell SSH process,...
CVE-2025-14946
A flaw was found in libnbd. A malicious actor could exploit this by convincing libnbd to open a specially crafted Uniform Resource Identifier URI. This vulnerability arises because non-standard hostnames starting with '-o' are incorrectly interpreted as arguments to the Secure Shell SSH process,...
Linux Distros Unpatched Vulnerability : CVE-2025-14946
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libnbd. A malicious actor could exploit this by convincing libnbd to open a specially crafted Uniform Resource Identifier URI. This...
TencentOS Server 4: libnbd (TSSA-2024:0621)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0621 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Fedora 42 : libnbd (2025-2e23403e23)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-2e23403e23 advisory. New upstream stable version 1.22.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
TencentOS Server 4: libnbd (TSSA-2024:0622)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0622 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
UBUNTU-CVE-2024-7383
A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when using TLS to connect to an NBD server. This issue allows a man-in-the-middle attack on NBD traffic...
libnbd Security Vulnerabilities
libnbd is a library for editing NBD Network Block Device clients. A security vulnerability exists in libnbd that stems from an assertion failure in BLOCKSTATUS...
AZL-34933 CVE-2023-5215 affecting package libnbd for versions less than 1.12.1-3
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...
Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...