In nbd-server in nbd before 3.24, there is a stack-based buffer overflow. An attacker can cause a buffer overflow in the parsing of the name field by sending a crafted NBD_OPT_INFO or NBD_OPT_GO message with an large value as the length of the name.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-06T00:00:00
Updated: 2024-08-03T05:03:32.965Z
Reserved: 2022-03-06T00:00:00
Link: CVE-2022-26496
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-03-06T06:15:07.357
Modified: 2024-02-04T11:15:09.087
Link: CVE-2022-26496
Redhat
No data.