Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 5 articles for you...
100
security advisorymoderatedenial of serviceSUSE: 2025:01888-1 moderate: nbdkit denial of service issues
* bsc#1243108 * bsc#1243110 Cross-References: * CVE-2025-47711 . # Security update for nbdkit Announcement ID: SUSE-SU-2025:01888-1 Release Date: 2025-06-11T05:43:28Z Rating: moderate References: * bsc#1243108 * bsc#1243110 Cross-References: * CVE-2025-47711 * CVE-2025-47712 CVSS scores: * CVE-2025-47711 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47711 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47711 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47712 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47712 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47712 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for nbdkit fixes the following issues: Update to version 1.40.6. Security fixes: * CVE-2025-47712: integer overflow in blocksize filter when processing client block status requests larger than 2**32 will trigger an assertion failure and cause a denial-of-service. (bsc#1243108). * CVE-2025-47711: off-by-one error when processing block status results from plugins on behalf of an NBD client may trigger an assertion failure and cause a denial of service (bsc#1243110). Other fixes and changes: * golang: Support GCC 15. * openbsd: curl: Include pthread.h. * rust: Fix "overindented" list in comment. * rust: Declare explicit extern "C" API. * plugins/rust: Use CStr literals for static strings. * vddk: do_extents: Avoid reading partial chunk beyond the end of the disk. * vddk: do_extents: Exit the function if we hit req_one condition. * vddk: do_extents: Marksome local variables const. * vddk: Cache the disk size in the handle. * vddk: Include . * python: examples: Fix comment above API_VERSION constant. * tcl: Fix for Tcl 9.0 compatibility. * plugins/ocaml/NBDKit.ml: Sort bindings into order. * ocaml: Don't call abort if caml_c_thread_unregister fails. * ocaml: Use real addresses instead of (void*) s. * evil: Link to nbdkit_parse_probability(3). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-1888=1 ## Package List: * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * nbdkit-basic-filters-debuginfo-1.40.6-150700.4.3.1 * nbdkit-server-1.40.6-150700.4.3.1 * nbdkit-server-debuginfo-1.40.6-150700.4.3.1 * nbdkit-nbd-plugin-debuginfo-1.40.6-150700.4.3.1 * nbdkit-basic-plugins-debuginfo-1.40.6-150700.4.3.1 * nbdkit-basic-filters-1.40.6-150700.4.3.1 * nbdkit-debuginfo-1.40.6-150700.4.3.1 * nbdkit-curl-plugin-1.40.6-150700.4.3.1 * nbdkit-nbd-plugin-1.40.6-150700.4.3.1 * nbdkit-debugsource-1.40.6-150700.4.3.1 * nbdkit-python-plugin-1.40.6-150700.4.3.1 * nbdkit-ssh-plugin-1.40.6-150700.4.3.1 * nbdkit-ssh-plugin-debuginfo-1.40.6-150700.4.3.1 * nbdkit-curl-plugin-debuginfo-1.40.6-150700.4.3.1 * nbdkit-1.40.6-150700.4.3.1 * nbdkit-python-plugin-debuginfo-1.40.6-150700.4.3.1 * nbdkit-basic-plugins-1.40.6-150700.4.3.1 * Server Applications Module 15-SP7 (x86_64) * nbdkit-vddk-plugin-1.40.6-150700.4.3.1 * nbdkit-vddk-plugin-debuginfo-1.40.6-150700.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47711.html * https://www.suse.com/security/cve/CVE-2025-47712.html * https://bugzilla.suse.com/show_bug.cgi?id=1243108 * https://bugzilla.suse.com/show_bug.cgi?id=1243110 . Arecently released nbdkit update addresses two critical denial-of-service vulnerabilities affecting SUSE systems; essential patch information provided.. Nbdkit Security Update, SUSE Update, Denial of Service Fix, SUSE Security Alert. . LinuxSecurity.com Team
Jun 11, 2025
SuSE
100
security advisorymoderatesecurity updateSUSE Linux Update: 2025:01889-1 moderate: nbdkit DoS Fix
* bsc#1243108 * bsc#1243110 Cross-References: * CVE-2025-47711 . # Security update for nbdkit Announcement ID: SUSE-SU-2025:01889-1 Release Date: 2025-06-11T05:43:41Z Rating: moderate References: * bsc#1243108 * bsc#1243110 Cross-References: * CVE-2025-47711 * CVE-2025-47712 CVSS scores: * CVE-2025-47711 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47711 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47711 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47712 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47712 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47712 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for nbdkit fixes the following issues: Update to version 1.36.5. Security fixes: * CVE-2025-47712: integer overflow in blocksize filter when processing client block status requests larger than 2**32 will trigger an assertion failure and cause a denial-of-service. (bsc#1243108). * CVE-2025-47711: off-by-one error when processing block status results from plugins on behalf of an NBD client may trigger an assertion failure and cause a denial of service (bsc#1243110). Other fixes and changes: * tests: Add test-blkio.sh to unconditional EXTRA_DIST rule. * Revert "valgrind: Add suppression for liblzma bug". * vddk: Move "Unknown error" information to the manual. * ocaml Add better comments to the example plugin. * ocaml: Simplify pread operation. * ocaml: Define a struct handle to hold the OCaml handle. * ocaml:Add OCaml version to --dump-plugin output. * ocaml: Print callback name when an exception is printed. * ocaml: Combine all exception printing into a single macro. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1889=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1889=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1889=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * nbdkit-example-plugins-1.36.5-150400.3.9.1 * nbdkit-xz-filter-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-example-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-tar-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-xz-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-devel-1.36.5-150400.3.9.1 * nbdkit-tar-filter-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * openSUSE Leap 15.4 (noarch) * nbdkit-bash-completion-1.36.5-150400.3.9.1 * openSUSE Leap 15.4 (x86_64) * nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * nbdkit-example-plugins-1.36.5-150400.3.9.1 * nbdkit-xz-filter-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-example-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-tar-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-xz-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-devel-1.36.5-150400.3.9.1 * nbdkit-tar-filter-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (noarch) * nbdkit-bash-completion-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (x86_64) *nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * Server Applications Module 15-SP6 (x86_64) * nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47711.html * https://www.suse.com/security/cve/CVE-2025-47712.html * https://bugzilla.suse.com/show_bug.cgi?id=1243108 * https://bugzilla.suse.com/show_bug.cgi?id=1243110 . A patch for nbdkit addresses severe vulnerability concerns in SUSE Linux that could affect system reliability. Prompt attention is recommended.. SUSE Linux Security, nbdkit Update, DoS Vulnerabilities, Linux Patch Management. . LinuxSecurity.com Team
Jun 11, 2025
SuSE
202
security advisorymoderatesoftware updateopenSUSE: 2025:01889-1 moderate: nbdkit Denial of Service Vulnerabilities
An update that solves two vulnerabilities can now be installed.. # Security update for nbdkit Announcement ID: SUSE-SU-2025:01889-1 Release Date: 2025-06-11T05:43:41Z Rating: moderate References: * bsc#1243108 * bsc#1243110 Cross-References: * CVE-2025-47711 * CVE-2025-47712 CVSS scores: * CVE-2025-47711 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47711 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47711 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47712 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47712 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47712 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for nbdkit fixes the following issues: Update to version 1.36.5. Security fixes: * CVE-2025-47712: integer overflow in blocksize filter when processing client block status requests larger than 2**32 will trigger an assertion failure and cause a denial-of-service. (bsc#1243108). * CVE-2025-47711: off-by-one error when processing block status results from plugins on behalf of an NBD client may trigger an assertion failure and cause a denial of service (bsc#1243110). Other fixes and changes: * tests: Add test-blkio.sh to unconditional EXTRA_DIST rule. * Revert "valgrind: Add suppression for liblzma bug". * vddk: Move "Unknown error" information to the manual. * ocaml Add better comments to the example plugin. * ocaml: Simplify pread operation. * ocaml: Define a struct handle to hold the OCaml handle. * ocaml:Add OCaml version to --dump-plugin output. * ocaml: Print callback name when an exception is printed. * ocaml: Combine all exception printing into a single macro. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1889=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1889=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1889=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * nbdkit-example-plugins-1.36.5-150400.3.9.1 * nbdkit-xz-filter-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-example-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-tar-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-xz-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-devel-1.36.5-150400.3.9.1 * nbdkit-tar-filter-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * openSUSE Leap 15.4 (noarch) * nbdkit-bash-completion-1.36.5-150400.3.9.1 * openSUSE Leap 15.4 (x86_64) * nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * nbdkit-example-plugins-1.36.5-150400.3.9.1 * nbdkit-xz-filter-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-example-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-tar-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-xz-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-gzip-filter-debuginfo-1.36.5-150400.3.9.1 * nbdkit-linuxdisk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-tmpdisk-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-devel-1.36.5-150400.3.9.1 * nbdkit-tar-filter-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (noarch) * nbdkit-bash-completion-1.36.5-150400.3.9.1 * openSUSE Leap 15.6 (x86_64) *nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * nbdkit-debugsource-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-plugins-1.36.5-150400.3.9.1 * nbdkit-debuginfo-1.36.5-150400.3.9.1 * nbdkit-curl-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-1.36.5-150400.3.9.1 * nbdkit-nbd-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-python-plugin-1.36.5-150400.3.9.1 * nbdkit-server-1.36.5-150400.3.9.1 * nbdkit-python-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-1.36.5-150400.3.9.1 * nbdkit-server-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-filters-debuginfo-1.36.5-150400.3.9.1 * nbdkit-basic-filters-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-ssh-plugin-1.36.5-150400.3.9.1 * Server Applications Module 15-SP6 (x86_64) * nbdkit-vddk-plugin-debuginfo-1.36.5-150400.3.9.1 * nbdkit-vddk-plugin-1.36.5-150400.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47711.html * https://www.suse.com/security/cve/CVE-2025-47712.html * https://bugzilla.suse.com/show_bug.cgi?id=1243108 * https://bugzilla.suse.com/show_bug.cgi?id=1243110 . A recent openSUSE patch resolves nbdkit vulnerabilities that may lead to denial-of-service attacks. Immediate installation is crucial for safeguarding your systems.. openSUSE nbdkit security update moderate vulnerabilities. . LinuxSecurity.com Team
Jun 11, 2025
OpenSUSE
89
security advisoryFedoraDenial of ServiceFedora 42: nbdkit 1.42.3 critical updates for Denial of Service risks
New upstream stable branch version 1.42.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-8a2d82f65a 2025-05-23 03:24:17.285672+00:00 -------------------------------------------------------------------------------- Name : nbdkit Product : Fedora 42 Version : 1.42.3 Release : 1.fc42 URL : https://gitlab.com/nbdkit/nbdkit Summary : NBD server Description : NBD is a protocol for accessing block devices (hard disks and disk-like things) over the network. nbdkit is a toolkit for creating NBD servers. The key features are: * Multithreaded NBD server written in C with good performance. * Minimal dependencies for the basic server. * Liberal license (BSD) allows nbdkit to be linked to proprietary libraries or included in proprietary code. * Well-documented, simple plugin API with a stable ABI guarantee. Lets you to export "unconventional" block devices easily. * You can write plugins in C or many other languages. * Filters can be stacked in front of plugins to transform the output. * Server can run standalone or can be invoked from other programs. 'nbdkit' is a meta-package which pulls in the core server and a useful subset of plugins and filters with minimal dependencies. If you want just the server, install 'nbdkit-server'. To develop plugins, install the 'nbdkit-devel' package and start by reading the nbdkit(1) and nbdkit-plugin(3) manual pages. -------------------------------------------------------------------------------- Update Information: New upstream stable branch version 1.42.3 -------------------------------------------------------------------------------- ChangeLog: * Sat May 10 2025 Richard W.M. Jones - 1.42.3-1 - New upstream stable branch version 1.42.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2365692 - CVE-2025-47711 nbdkit: off-by-one error when processingblock status may lead to a Denial of Service [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2365692 [ 2 ] Bug #2365727 - CVE-2025-47712 nbdkit: Integer overflow triggers an assertion resulting in Denial of Service [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2365727 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-8a2d82f65a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 23, 2025
•Critical
Fedora
202
security advisorymoderatesoftware updateopenSUSE Tumbleweed: 2025:15088-1 moderate: nbdkit-1.42.3-1.1
An update that solves 2 vulnerabilities can now be installed.. # nbdkit-1.42.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15088-1 Rating: moderate Cross-References: * CVE-2025-47711 * CVE-2025-47712 CVSS scores: * CVE-2025-47711 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47711 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47712 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47712 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the nbdkit-1.42.3-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * nbdkit 1.42.3-1.1 * nbdkit-bash-completion 1.42.3-1.1 * nbdkit-basic-filters 1.42.3-1.1 * nbdkit-basic-plugins 1.42.3-1.1 * nbdkit-bzip2-filter 1.42.3-1.1 * nbdkit-curl-plugin 1.42.3-1.1 * nbdkit-devel 1.42.3-1.1 * nbdkit-example-plugins 1.42.3-1.1 * nbdkit-gcs-plugin 1.42.3-1.1 * nbdkit-linuxdisk-plugin 1.42.3-1.1 * nbdkit-nbd-plugin 1.42.3-1.1 * nbdkit-python-plugin 1.42.3-1.1 * nbdkit-server 1.42.3-1.1 * nbdkit-ssh-plugin 1.42.3-1.1 * nbdkit-stats-filter 1.42.3-1.1 * nbdkit-tar-filter 1.42.3-1.1 * nbdkit-tmpdisk-plugin 1.42.3-1.1 * nbdkit-vddk-plugin 1.42.3-1.1 * nbdkit-xz-filter 1.42.3-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47711.html * https://www.suse.com/security/cve/CVE-2025-47712.html . The Fedora Linux update resolves multiple significant vulnerabilities in nbdkit-1.42.3-1.1. Apply the update immediately.. openSUSE Tumbleweed, nbdkit update, security advisory, software security, openSUSE vulnerabilities. . LinuxSecurity.com Team
May 15, 2025
OpenSUSE
217
security advisorycritical fixlinux updateOracle Linux 8 ELSA-2024-4420 Critical: qemu-img File Access Issue
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-4420 http://linux.oracle.com/errata/ELSA-2024-4420.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: libguestfs-bash-completion-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-inspect-icons-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-javadoc-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-man-pages-ja-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-man-pages-uk-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-tools-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libnbd-bash-completion-1.6.0-5.module+el8.9.0+90052+d3bf71d8.noarch.rpm nbdkit-bash-completion-1.24.0-5.module+el8.9.0+90052+d3bf71d8.noarch.rpm seabios-bin-1.16.0-4.module+el8.9.0+90052+d3bf71d8.noarch.rpm seavgabios-bin-1.16.0-4.module+el8.9.0+90052+d3bf71d8.noarch.rpm sgabios-bin-0.20170427git-3.module+el8.9.0+90052+d3bf71d8.noarch.rpm virt-v2v-bash-completion-1.42.0-22.module+el8.9.0+90052+d3bf71d8.noarch.rpm virt-v2v-man-pages-ja-1.42.0-22.module+el8.9.0+90052+d3bf71d8.noarch.rpm virt-v2v-man-pages-uk-1.42.0-22.module+el8.9.0+90052+d3bf71d8.noarch.rpm hivex-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-appliance-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-gfs2-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-gobject-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-gobject-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-java-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-java-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-rescue-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-rsync-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-tools-c-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libguestfs-winsupport-8.10-1.module+el8.10.0+90308+7c659588.x86_64.rpm libguestfs-xfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libiscsi-1.18.0-8.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libiscsi-devel-1.18.0-8.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libiscsi-utils-1.18.0-8.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libtpms-0.9.1-2.20211126git1ff6fe1f43.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libtpms-devel-0.9.1-2.20211126git1ff6fe1f43.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libvirt-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-client-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-config-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-config-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-interface-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-nodedev-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-qemu-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-secret-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-core-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-disk-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-gluster-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-iscsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-logical-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-mpath-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-rbd-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-driver-storage-scsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-daemon-kvm-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-dbus-1.3.0-2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm libvirt-devel-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-docs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-libs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-lock-sanlock-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-nss-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm libvirt-wireshark-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.x86_64.rpm lua-guestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdfuse-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-basic-filters-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-basic-plugins-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-curl-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-devel-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-example-plugins-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-gzip-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-gzip-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-linuxdisk-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-nbd-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-python-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-server-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-ssh-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-tar-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-tar-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-tmpdisk-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-vddk-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm nbdkit-xz-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm netcf-0.2.8-12.module+el8.9.0+90052+d3bf71d8.x86_64.rpm netcf-devel-0.2.8-12.module+el8.9.0+90052+d3bf71d8.x86_64.rpm netcf-libs-0.2.8-12.module+el8.9.0+90052+d3bf71d8.x86_64.rpm perl-Sys-Guestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm perl-Sys-Virt-8.0.0-1.module+el8.9.0+90052+d3bf71d8.x86_64.rpm perl-hivex-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm python3-hivex-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm python3-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm python3-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm python3-libvirt-8.0.0-2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm qemu-guest-agent-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-img-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-block-curl-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-block-gluster-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-block-iscsi-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-block-rbd-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-block-ssh-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-common-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-core-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-docs-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-hw-usbredir-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-ui-opengl-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm qemu-kvm-ui-spice-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm ruby-hivex-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm ruby-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm seabios-1.16.0-4.module+el8.9.0+90052+d3bf71d8.x86_64.rpm sgabios-0.20170427git-3.module+el8.9.0+90052+d3bf71d8.x86_64.rpm supermin-5.2.1-2.0.1.module+el8.9.0+90052+d3bf71d8.x86_64.rpm supermin-devel-5.2.1-2.0.1.module+el8.9.0+90052+d3bf71d8.x86_64.rpm swtpm-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.x86_64.rpm swtpm-devel-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.x86_64.rpm swtpm-libs-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.x86_64.rpm swtpm-tools-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.x86_64.rpm swtpm-tools-pkcs11-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.x86_64.rpm virt-dib-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm virt-v2v-1.42.0-22.module+el8.9.0+90052+d3bf71d8.x86_64.rpm hivex-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm libguestfs-winsupport-8.10-1.module+el8.10.0+90308+7c659588.i686.rpm libiscsi-1.18.0-8.module+el8.9.0+90052+d3bf71d8.i686.rpm libiscsi-devel-1.18.0-8.module+el8.9.0+90052+d3bf71d8.i686.rpm libiscsi-utils-1.18.0-8.module+el8.9.0+90052+d3bf71d8.i686.rpm libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm libvirt-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-client-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-config-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-config-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-interface-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-nodedev-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-secret-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-core-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-disk-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-iscsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-iscsi-direct-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-logical-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-mpath-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-daemon-driver-storage-scsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-dbus-1.3.0-2.module+el8.9.0+90052+d3bf71d8.i686.rpm libvirt-devel-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-docs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-libs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-nss-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm libvirt-wireshark-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.i686.rpm nbdfuse-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm netcf-0.2.8-12.module+el8.9.0+90052+d3bf71d8.i686.rpm netcf-devel-0.2.8-12.module+el8.9.0+90052+d3bf71d8.i686.rpm netcf-libs-0.2.8-12.module+el8.9.0+90052+d3bf71d8.i686.rpm ocaml-hivex-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm ocaml-hivex-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm ocaml-hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm ocaml-hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.x86_64.rpm ocaml-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm ocaml-libguestfs-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.x86_64.rpm ocaml-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm ocaml-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm ocaml-libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm ocaml-libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.x86_64.rpm perl-Sys-Virt-8.0.0-1.module+el8.9.0+90052+d3bf71d8.i686.rpm perl-hivex-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm python3-hivex-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm python3-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.i686.rpm python3-libvirt-8.0.0-2.module+el8.9.0+90052+d3bf71d8.i686.rpm qemu-kvm-tests-6.2.0-50.module+el8.10.0+90365+4069216b.x86_64.rpm ruby-hivex-1.3.18-23.module+el8.9.0+90075+85334608.i686.rpm sgabios-0.20170427git-3.module+el8.9.0+90052+d3bf71d8.i686.rpm aarch64: hivex-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-appliance-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-bash-completion-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-gfs2-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-gobject-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-gobject-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-inspect-icons-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-java-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-java-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-javadoc-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-man-pages-ja-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-man-pages-uk-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-rescue-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-rsync-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-tools-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.noarch.rpm libguestfs-tools-c-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libguestfs-winsupport-8.10-1.module+el8.10.0+90308+7c659588.aarch64.rpm libguestfs-xfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libiscsi-1.18.0-8.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libiscsi-devel-1.18.0-8.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libiscsi-utils-1.18.0-8.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libnbd-bash-completion-1.6.0-5.module+el8.9.0+90052+d3bf71d8.noarch.rpm libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libtpms-0.9.1-2.20211126git1ff6fe1f43.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libtpms-devel-0.9.1-2.20211126git1ff6fe1f43.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libvirt-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-client-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-config-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-config-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-interface-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-network-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-nodedev-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-nwfilter-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-qemu-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-secret-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-core-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-disk-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-gluster-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-iscsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-logical-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-mpath-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-rbd-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-driver-storage-scsi-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-daemon-kvm-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-dbus-1.3.0-2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm libvirt-devel-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-docs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-libs-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-lock-sanlock-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-nss-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm libvirt-wireshark-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.aarch64.rpm lua-guestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdfuse-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-bash-completion-1.24.0-5.module+el8.9.0+90052+d3bf71d8.noarch.rpm nbdkit-basic-filters-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-basic-plugins-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-curl-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-devel-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-example-plugins-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-gzip-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-gzip-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-linuxdisk-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-nbd-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-python-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-server-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-ssh-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-tar-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-tar-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-tmpdisk-plugin-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm nbdkit-xz-filter-1.24.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm netcf-0.2.8-12.module+el8.9.0+90052+d3bf71d8.aarch64.rpm netcf-devel-0.2.8-12.module+el8.9.0+90052+d3bf71d8.aarch64.rpm netcf-libs-0.2.8-12.module+el8.9.0+90052+d3bf71d8.aarch64.rpm perl-Sys-Guestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm perl-Sys-Virt-8.0.0-1.module+el8.9.0+90052+d3bf71d8.aarch64.rpm perl-hivex-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm python3-hivex-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm python3-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm python3-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm python3-libvirt-8.0.0-2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm qemu-guest-agent-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-img-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-block-curl-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-block-iscsi-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-block-rbd-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-block-ssh-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-common-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-core-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm qemu-kvm-docs-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm ruby-hivex-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm ruby-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm supermin-5.2.1-2.0.1.module+el8.9.0+90052+d3bf71d8.aarch64.rpm supermin-devel-5.2.1-2.0.1.module+el8.9.0+90052+d3bf71d8.aarch64.rpm swtpm-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.aarch64.rpm swtpm-devel-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.aarch64.rpm swtpm-libs-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.aarch64.rpm swtpm-tools-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.aarch64.rpm swtpm-tools-pkcs11-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.aarch64.rpm virt-dib-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm ocaml-hivex-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm ocaml-hivex-devel-1.3.18-23.module+el8.9.0+90075+85334608.aarch64.rpm ocaml-libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm ocaml-libguestfs-devel-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.aarch64.rpm ocaml-libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm ocaml-libnbd-devel-1.6.0-5.module+el8.9.0+90052+d3bf71d8.aarch64.rpm qemu-kvm-tests-6.2.0-50.module+el8.10.0+90365+4069216b.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//hivex-1.3.18-23.module+el8.9.0+90075+85334608.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libguestfs-1.44.0-9.0.2.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libguestfs-winsupport-8.10-1.module+el8.10.0+90308+7c659588.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libiscsi-1.18.0-8.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libnbd-1.6.0-5.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libtpms-0.9.1-2.20211126git1ff6fe1f43.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libvirt-8.0.0-23.2.0.1.module+el8.10.0+90363+955e9a81.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libvirt-dbus-1.3.0-2.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libvirt-python-8.0.0-2.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nbdkit-1.24.0-5.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//netcf-0.2.8-12.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//perl-Sys-Virt-8.0.0-1.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//qemu-kvm-6.2.0-50.module+el8.10.0+90365+4069216b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//seabios-1.16.0-4.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//sgabios-0.20170427git-3.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//supermin-5.2.1-2.0.1.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//swtpm-0.7.0-4.20211109gitb79fd91.module+el8.9.0+90052+d3bf71d8.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//virt-v2v-1.42.0-22.module+el8.9.0+90052+d3bf71d8.src.rpm Related CVEs: CVE-2024-4467 Description of changes: hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm [6.2.0-50] - kvm-qcow2-Don-t-open-data_file-with-BDRV_O_NO_IO.patch [RHEL-35616] - kvm-iotests-244-Don-t-store-data-file-with-protocol-in-i.patch [RHEL-35616] - kvm-iotests-270-Don-t-store-data-file-with-json-prefix-i.patch [RHEL-35616] - kvm-block-introduce-bdrv_open_file_child-helper.patch [RHEL-35616] - kvm-block-Parse-filenames-only-when-explicitly-requested.patch [RHEL-35616] - Resolves: RHEL-35616 (CVE-2024-4467 virt:rhel/qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write [rhel-8.10.z]) seabios sgabios supermin swtpm virt-v2v _______________________________________________ El-errata mailing list
Jul 19, 2024
•Critical
Oracle
89
security advisoryfedoracriticalFedora 33: FEDORA-2021-535596f062 Critical Injection Flaw in nbdkit
New upstream stable version 1.24.6; fixes CVE-2021-3716.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-535596f062 2021-08-29 01:13:10.120208 --------------------------------------------------------------------------------Name : nbdkit Product : Fedora 33 Version : 1.24.6 Release : 1.fc33 URL : https://github.com/libguestfs/nbdkit Summary : NBD server Description : NBD is a protocol for accessing block devices (hard disks and disk-like things) over the network. nbdkit is a toolkit for creating NBD servers. The key features are: * Multithreaded NBD server written in C with good performance. * Minimal dependencies for the basic server. * Liberal license (BSD) allows nbdkit to be linked to proprietary libraries or included in proprietary code. * Well-documented, simple plugin API with a stable ABI guarantee. Lets you to export "unconventional" block devices easily. * You can write plugins in C or many other languages. * Filters can be stacked in front of plugins to transform the output. 'nbdkit' is a meta-package which pulls in the core server and a useful subset of plugins and filters with minimal dependencies. If you want just the server, install 'nbdkit-server'. To develop plugins, install the 'nbdkit-devel' package and start by reading the nbdkit(1) and nbdkit-plugin(3) manual pages. --------------------------------------------------------------------------------Update Information: New upstream stable version 1.24.6; fixes CVE-2021-3716. --------------------------------------------------------------------------------ChangeLog: * Fri Aug 20 2021 Eric Blake - 1.24.6-1 - New upstream stable version 1.24.6; fixes CVE-2021-3716. --------------------------------------------------------------------------------References: [ 1 ] Bug #1994695 - CVE-2021-3716 nbdkit: NBD_OPT_STRUCTURED_REPLY injection on STARTTLS https://bugzilla.redhat.com/show_bug.cgi?id=1994695 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-535596f062' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Aug 28, 2021
•Critical
Fedora
200
security advisorydenial of servicelow severityScientific Linux SL7 nbdkit Low: SLSA-2020-1167-1 Denial Of Service Issue
nbdkit: denial of service due to premature opening of back-end connection SL7 x86_64 nbdkit-plugin-python-common-1.8.0-3.el7.x86_64.rpm nbdkit-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-vddk-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-python2-1.8.0-3.el7.x86_64.rpm nbdkit-debuginfo-1.8.0-3.el7.x86_64.rpm - Scientific Linux Development Team. Synopsis: Low: nbdkit security and bug fix update Advisory ID: SLSA-2020:1167-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2019-14850 -- * nbdkit: denial of service due to premature opening of back-end connection -- SL7 x86_64 nbdkit-plugin-python-common-1.8.0-3.el7.x86_64.rpm nbdkit-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-vddk-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-python2-1.8.0-3.el7.x86_64.rpm nbdkit-debuginfo-1.8.0-3.el7.x86_64.rpm - Scientific Linux Development Team . Critical patch for nbdkit on SL7 x86_64 released on 2020-04-07 to mitigate DoS vulnerabilities.. nbdkit, denial of service, SL7 x86_64, security update, Scientific Linux. . Severity: Low. LinuxSecurity.com Team
Apr 20, 2020
•Low
Scientific Linux
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!