Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-5215

Опубликовано: 28 сент. 2023
Источник: debian
EPSS Низкий

Описание

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbd_get_size() function correctly.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libnbdfixed1.16.5-1package
libnbdno-dsabookwormpackage
libnbdno-dsabullseyepackage

Примечания

  • https://listman.redhat.com/archives/libguestfs/2023-September/032635.html

  • Fixed by: https://gitlab.com/nbdkit/libnbd/-/commit/0f8ee8c6bd6dd93de771e6d4da87ec5a59504aae (v1.18.0)

  • Fixed by: https://gitlab.com/nbdkit/libnbd/-/commit/f03330181229360a1a97a264aa956fea54c657de (v1.16.5)

EPSS

Процентиль: 14%
0.00047
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-5215

CVSS3: 5.3
ubuntu
почти 2 года назад

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbd_get_size() function correctly.

redhat логотип

CVE-2023-5215

CVSS3: 5.3
redhat
почти 2 года назад

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbd_get_size() function correctly.

nvd логотип

CVE-2023-5215

CVSS3: 5.3
nvd
почти 2 года назад

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the nbd_get_size() function correctly.

msrc логотип

CVE-2023-5215

CVSS3: 6.5
msrc
больше 1 года назад

Описание отсутствует

suse-cvrf логотип

SUSE-SU-2023:4222-1

suse-cvrf
больше 1 года назад

Security update for libnbd

EPSS

Процентиль: 14%
0.00047
Низкий