Bug 1934727 (CVE-2021-20286) - CVE-2021-20286 libnbd: Assertion failure in nbd_unlocked_opt_go in lib/opt.c
Summary: CVE-2021-20286 libnbd: Assertion failure in nbd_unlocked_opt_go in lib/opt.c
Keywords:
Status: NEW
Alias: CVE-2021-20286
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1937890 1938143 1937891
Blocks: 1934728 1937913
TreeView+ depends on / blocked
 
Reported: 2021-03-03 18:14 UTC by Pedro Sampaio
Modified: 2021-03-22 10:44 UTC (History)
6 users (show)

Fixed In Version: libnbd 1.7.3
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in libnbd. A malicious server may be able to kill a client application using libnbd due to an assertion failure in nbd_unlocked_opt_go() leading to denial of service. The highest threat from this vulnerability is to system availability.
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Pedro Sampaio 2021-03-03 18:14:22 UTC
A flaw was found in libnbd. An assertion failure in in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.

Comment 2 Mauro Matteo Cascella 2021-03-11 16:39:31 UTC
Upstream fix:
https://gitlab.com/nbdkit/libnbd/-/commit/fb4440de9cc76e9c14bd3ddf3333e78621f40ad0

Comment 4 Richard W.M. Jones 2021-03-11 17:07:43 UTC
It's really all Eric's work, I just tested his patch.

Comment 5 Mauro Matteo Cascella 2021-03-11 17:10:04 UTC
Acknowledgments:

Name: Eric Blake (Red Hat)

Comment 11 Mauro Matteo Cascella 2021-03-22 10:19:08 UTC
Statement:

Red Hat Enterprise Linux 8 is not affected by this issue. The affected API was introduced in upstream `libnbd` version 1.4 which is only shipped in RHEL Advanced Virtualization 8.3.0 onward.


Note You need to log in before you can comment on or make changes to this bug.