Changes made to bug 1934727

Back to bug 1934727

Who	When	What	Removed	Added
Pedro Sampaio	2021-03-03 18:14:22 UTC	CC		security-response-team
Pedro Sampaio	2021-03-03 18:14:38 UTC	Blocks		1934728
Mauro Matteo Cascella	2021-03-11 16:32:42 UTC	Priority	medium	low
		Deadline		2021-03-01
		Severity	medium	low
Mauro Matteo Cascella	2021-03-11 16:32:59 UTC	Group	security, qe_staff
		CC		virt-maint
		Deadline	2021-03-01
		Summary	EMBARGOED libnbd: Assertion failure in nbd_unlocked_opt_go in ilb/opt.c	libnbd: Assertion failure in nbd_unlocked_opt_go in ilb/opt.c
Mauro Matteo Cascella	2021-03-11 16:39:31 UTC	Fixed In Version		libnbd 1.7.3
Mauro Matteo Cascella	2021-03-11 17:19:28 UTC	Depends On		1937891, 1937890
Pedro Sampaio	2021-03-11 17:47:44 UTC	Summary	libnbd: Assertion failure in nbd_unlocked_opt_go in ilb/opt.c	CVE-2021-20286 libnbd: Assertion failure in nbd_unlocked_opt_go in ilb/opt.c
Pedro Sampaio	2021-03-11 17:47:44 UTC	Alias		CVE-2021-20286
Pedro Sampaio	2021-03-11 17:49:57 UTC	Blocks		1937913
Eric Blake	2021-03-11 18:23:12 UTC	CC		eblake
Eric Blake	2021-03-11 18:23:12 UTC	Summary	CVE-2021-20286 libnbd: Assertion failure in nbd_unlocked_opt_go in ilb/opt.c	CVE-2021-20286 libnbd: Assertion failure in nbd_unlocked_opt_go in lib/opt.c
Mauro Matteo Cascella	2021-03-12 09:38:31 UTC	Depends On		1938143
Richard W.M. Jones	2021-03-15 09:59:26 UTC	CC		tzheng
RaTasha Tillery-Smith	2021-03-15 17:08:49 UTC	Doc Text		A flaw was found in libnbd. An assertion failure in in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. The highest threat from this vulnerability is to system availability.
Mauro Matteo Cascella	2021-03-22 10:23:02 UTC	Doc Text	A flaw was found in libnbd. An assertion failure in in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. The highest threat from this vulnerability is to system availability.	A flaw was found in libnbd. A malicious server may be able to kill a client application using libnbd due to an assertion failure in nbd_unlocked_opt_go() leading to denial of service. The highest threat from this vulnerability is to system availability.
Mauro Matteo Cascella	2021-03-22 10:43:29 UTC	CC		mcascell
Red Hat Bugzilla	2023-07-07 08:28:15 UTC	CC	security-response-team
Red Hat Bugzilla	2023-07-07 08:28:15 UTC	Assignee	security-response-team	nobody

Back to bug 1934727