2 matches found
CVE-2019-14850
CVE-2019-14850 affects nbdkit versions 1.12.7, 1.14.1, and 1.15.1, where a remote attacker can cause DoS by opening a connection that triggers extensive work initializing backend plugins, leading to resource consumption and service degradation. The underlying cause is premature opening of back-en...
CVE-2019-14851
CVE-2019-14851 describes a denial-of-service in the project’s nbdkit daemon. The vulnerability is triggered by a specific sequence of commands that could cause an assertion failure, leading to nbdkit exiting. Affected versions are explicitly listed as 1.12.7, 1.14.1, and 1.15.1. The provided sour...