In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic (via a modified lm_bufcount field) due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between sptlrpc_svc_unwrap_request and lustre_msg_hdr_size_v2.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-01-27T04:20:23
Updated: 2024-08-05T02:39:10.038Z
Reserved: 2020-01-27T00:00:00
Link: CVE-2019-20429
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-01-27T05:15:12.343
Modified: 2020-01-29T19:44:04.730
Link: CVE-2019-20429
Redhat
No data.