Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-0530

Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device (nbd) before 2.9.20 might allow remote attackers to execute arbitrary code via a long request. NOTE: this issue exists because of a CVE-2005-3534 regression.

Related bugs and status

CVE-2011-0530 (Candidate) is related to these bugs:

Bug #718300: CVE-2011-0530

		In	Importance	Status
718300	CVE-2011-0530	nbd (Ubuntu)	Undecided	Fix Released
718300	CVE-2011-0530	nbd (Ubuntu Natty)	Undecided	Fix Released
718300	CVE-2011-0530	nbd (Ubuntu Hardy)	Medium	Fix Released
718300	CVE-2011-0530	nbd (Ubuntu Karmic)	Medium	Won't Fix
718300	CVE-2011-0530	nbd (Ubuntu Maverick)	Medium	Fix Released
718300	CVE-2011-0530	nbd (Ubuntu Lucid)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2011012...
MLIST: [oss-security] 2011013...
CONFIRM: http://bugs.debian.org...
CONFIRM: https://bugzilla.redha...
CONFIRM: https://github.com/yoe...
FEDORA: FEDORA-2011-1097
FEDORA: FEDORA-2011-1108
SECUNIA: 43353
VUPEN: ADV-2011-0403
DEBIAN: DSA-2183
BID: 46572
VUPEN: ADV-2011-0582
SECUNIA: 43610
SUSE: openSUSE-SU-2011:0193
GENTOO: GLSA-201206-35
SUSE: SUSE-SR:2011:005
XF: networkblock-nbdserver...