Описание
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size and tgt_brw_write leads to a tgt_shortio2pages integer signedness error.
Ссылки
- ProductVendor Advisory
- Release NotesVendor Advisory
- ExploitIssue TrackingThird Party Advisory
- ExploitThird Party Advisory
- ProductVendor Advisory
- Release NotesVendor Advisory
- ExploitIssue TrackingThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
9.8 Critical
CVSS3
9 Critical
CVSS2
Дефекты
Связанные уязвимости
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size and tgt_brw_write leads to a tgt_shortio2pages integer signedness error.
In the Lustre file system before 2.12.3, the ptlrpc module has a buffe ...
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size and tgt_brw_write leads to a tgt_shortio2pages integer signedness error.
EPSS
9.8 Critical
CVSS3
9 Critical
CVSS2