Lucene search
K

260 matches found

Positive Technologies
Positive Technologies
added 2024/06/25 12:0 a.m.3 views

PT-2024-6389 · Libnbd +7 · Libnbd +7

Name of the Vulnerable Software and Affected Versions: libnbd affected versions not specified Description: The issue is related to a flaw in the libnbd library, where the client does not always correctly verify the NBD server's certificate when using TLS to connect to an NBD server. This allows a...

8.2CVSS7.5AI score0.01027EPSS
Exploits0References61
OSV
OSV
added 2024/06/15 12:0 a.m.7 views

OPENSUSE-SU-2024:10961-1 libnbd-1.9.3-1.2 on GA media

These are all security issues fixed in the libnbd-1.9.3-1.2 package on the GA media of openSUSE Tumbleweed...

4CVSS3.5AI score0.01114EPSS
Exploits0References1
OSV
OSV
added 2024/06/15 12:0 a.m.12 views

OPENSUSE-SU-2024:13422-1 libnbd-1.18.1-2.1 on GA media

These are all security issues fixed in the libnbd-1.18.1-2.1 package on the GA media of openSUSE Tumbleweed...

5.3CVSS5.7AI score0.00922EPSS
Exploits0References1
OSV
OSV
added 2024/06/15 12:0 a.m.9 views

OPENSUSE-SU-2024:13278-1 libnbd-1.18.0-1.1 on GA media

These are all security issues fixed in the libnbd-1.18.0-1.1 package on the GA media of openSUSE Tumbleweed...

6.5CVSS6AI score0.00746EPSS
Exploits1References1
OSV
OSV
added 2024/06/15 12:0 a.m.17 views

OPENSUSE-SU-2024:11833-1 libnbd-1.10.4-1.1 on GA media

These are all security issues fixed in the libnbd-1.10.4-1.1 package on the GA media of openSUSE Tumbleweed...

4.8CVSS6.3AI score0.00788EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2024/06/13 12:0 a.m.49 views

virt:kvm_utils1 security update

hivex libguestfs libguestfs-winsupport libiscsi libnbd libvirt 5.7.0-42 - Document CVEs as fixed Karl Heubaum CVE-2023-2700 - Fix off-by-one error in udevListInterfacesByStatus Martin Kletzander Orabug: 36364474 CVE-2024-1441 - libvirt- : Check caller-provided buffers to be NULL with size 0 Erik...

5.5CVSS7.2AI score0.01891EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 8 : av_libnbd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libnbd: Crash or misbehaviour when NBD server returns an unexpected block size CVE-2023-5215 Note that Nessus has n...

6.5CVSS6.5AI score0.00746EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/06/01 12:0 a.m.30 views

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2024-3253)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-3253 advisory. - remote: check for negative array lengths before allocation CVE-2024-2494 libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm - Resolves: RHEL-1962...

7CVSS6.8AI score0.01261EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/05/30 12:0 a.m.39 views

virt:ol and virt-devel:rhel security update

hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt 8.0.0-23.1.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma 8.0.0-23.1.el8 - remote: check for negative array lengths before allocation CVE-2024-2494...

6.2CVSS7.7AI score0.01261EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/05/24 12:0 a.m.55 views

virt:ol and virt-devel:rhel security and enhancement update

hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...

7CVSS8.3AI score0.01891EPSS
Exploits2
OpenVAS
OpenVAS
added 2024/05/13 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2024-0174)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.00746EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 8 : libnbd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libnbd: Assertion failure in nbdunlockedoptgo in lib/opt.c CVE-2021-20286 - libnbd: Crash or misbehaviour...

4.1AI score0.01114EPSS
Exploits1References2
OSV
OSV
added 2024/05/10 4:9 p.m.8 views

MGASA-2024-0174 Updated libnbd packages fix security vulnerability

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...

6.5CVSS6.5AI score0.00746EPSS
Exploits1References3
Mageia
Mageia
added 2024/05/10 4:9 p.m.39 views

Updated libnbd packages fix security vulnerability

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 the NBD spec states the size is a 64-bit unsigned value. This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbdgetsize function...

6.5CVSS7.1AI score0.00746EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.28 views

Oracle Linux 9 : libnbd (ELSA-2024-2204)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2204 advisory. - Fix assertion in ext-mode BLOCKSTATUS CVE-2023-5871 resolves: RHEL-15143 Tenable has extracted the preceding description block directly from the Orac...

6.5CVSS6AI score0.00922EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2024/05/02 12:0 a.m.27 views

libnbd security update

1.18.1-3 - Backport unit test of recent libnbd API addition resolves: RHEL-16292 1.18.1-2 - Fix assertion in ext-mode BLOCKSTATUS CVE-2023-5871 resolves: RHEL-15143 1.18.1-1 - Rebase to 1.18.1 resolves: RHEL-14476...

6.5CVSS7.2AI score0.00922EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/04/30 9:55 a.m.23 views

Moderate: Red Hat Security Advisory: libnbd security update

An update for libnbd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.5CVSS6.2AI score0.00922EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2024/04/30 9:55 a.m.3 views

libnbd: Malicious NBD server may crash libnbd

A flaw was found in libnbd, due to a malicious Network Block Device NBD, a protocol for accessing Block Devices such as hard disks over a Network. This issue may allow a malicious NBD server to cause a Denial of Service...

5.3CVSS5.7AI score0.00922EPSS
Exploits0References5
OSV
OSV
added 2024/04/30 12:0 a.m.22 views

ALSA-2024:2204 Moderate: libnbd security update

Network Block Device NBD is a protocol for accessing Block Devices hard disks and disk-like devices over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fixes: libnbd: Malicious NBD server may crash libnbd CVE-2023-5871 libnbd: Crash or misbehaviour when NBD...

6.5CVSS6.1AI score0.00922EPSS
Exploits1References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.78 views

Moderate: libnbd security update

Network Block Device NBD is a protocol for accessing Block Devices hard disks and disk-like devices over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fixes: libnbd: Malicious NBD server may crash libnbd CVE-2023-5871 libnbd: Crash or misbehaviour when NBD...

6.5CVSS6.6AI score0.00922EPSS
Exploits1References6
Rows per page
Query Builder