CVE-2015-0847

Related Files

Ubuntu Security Notice USN-2676-1

Posted Jul 22, 2015

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2676-1 - It was discovered that NBD incorrectly handled IP address matching. A remote attacker could use this issue with an IP address that has a partial match and bypass access restrictions. This issue only affected Ubuntu 12.04 LTS. Tuomas discovered that NBD incorrectly handled wrong export names and closed connections during negotiation. A remote attacker could use this issue to cause NBD to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS. Various other issues were also addressed.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2013-6410, CVE-2013-7441, CVE-2015-0847

SHA-256 | 0cfef8765233ddb6db3ab0a1c9ceb17aa66f3140b82421a3ebb1288b1ef8d9c9

Download | Favorite | View

Debian Security Advisory 3271-1

Posted May 26, 2015

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3271-1 - Tuomas Rasanen discovered that unsafe signal handling in nbd-server, the server for the Network Block Device protocol, could allow remote attackers to cause a deadlock in the server process and thus a denial of service.

tags | advisory, remote, denial of service, protocol

systems | linux, debian

advisories | CVE-2013-7441, CVE-2015-0847

SHA-256 | 567fb50afd9751ca422d2bc84d615c534ab4290c75ef5d129abf23ad4e78b5ed

Download | Favorite | View