CVE-2021-20286

CWE-617Reachable Assertion7 documents7 sources
Severity
2.7LOW
EPSS
0.2%
top 51.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Redhat LibnbdRedhat Enterprise Linux
Timeline
PublishedMar 15
Latest updateMay 24

Description

A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:LExploitability: 1.2 | Impact: 1.4

Affected Packages3 packages

NVDredhat/libnbd< 1.7.3
Debianlibnbd< 1.6.2-1+2
CVEListV5libnbdlibnbd 1.7.3

Also affects: Enterprise Linux 8.3.0

Patches

Patch: gitlab.comPatch: gitlab.com

🔴Vulnerability Details

3
GHSA
GHSA-r4rf-vx7w-8692: A flaw was found in libnbd 12022-05-24
CVEList
CVE-2021-20286: A flaw was found in libnbd 12021-03-15
OSV
CVE-2021-20286: A flaw was found in libnbd 12021-03-15

📋Vendor Advisories

3
Microsoft
A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.2021-03-09
Red Hat
libnbd: Assertion failure in nbd_unlocked_opt_go in lib/opt.c2021-03-01
Debian
CVE-2021-20286: libnbd - A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in...2021
CVE-2021-20286 (LOW CVSS 2.7) | A flaw was found in libnbd 1.7.3 | cvebase.io