DSA-3271-1 nbd -- nbdID: oval:org.secpod.oval:def:602117 | Date: (C)2015-06-04 (M)2022-09-09 |
Class: PATCH | Family: unix |
Tuomas Räsänen discovered that unsafe signal handling in nbd-server, the server for the Network Block Device protocol, could allow remote attackers to cause a deadlock in the server process and thus a denial of service. Tuomas Räsänen also discovered that the modern-style negotiation was carried out in the main server process before forking the actual client handler. This could allow a remote attacker to cause a denial of service by querying a non-existent export. This issue only affected the oldstable distribution .
Platform: |
Debian 8.x |
Debian 7.x |
Product: |
nbd-client |
nbd-server |