CVE-2013-7441
Published: 29 May 2015
The modern style negotiation in Network Block Device (nbd-server) 2.9.22 through 3.3 allows remote attackers to cause a denial of service (root process termination) by (1) closing the connection during negotiation or (2) specifying a name for a non-existent export.
Priority
Status
Package | Release | Status |
---|---|---|
nbd Launchpad, Ubuntu, Debian |
upstream |
Released
(1:3.4-1)
|
precise |
Released
(1:2.9.25-2ubuntu1.1)
|
|
trusty |
Not vulnerable
(1:3.7-1)
|
|
utopic |
Not vulnerable
|
|
vivid |
Not vulnerable
|
|
Patches: upstream: https://github.com/yoe/nbd/commit/741495cb08503fd32a9d22648e63b64390c601f4 |