Originally, CVE-2005-3534: [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3534 has been assigned to NBD and addressed in nbd-v2.8.3 version: [2] http://sourceforge.net/project/shownotes.php?release_id=380202&group_id=13229 via changeset: [3] https://github.com/yoe/nbd/commit/4ed24fe0d64c7cc9963c57b52cad1555ad7c6b60 But nbd-v2.9.0: [4] http://sourceforge.net/projects/nbd/files/nbd/2.9.0/ contains the issue again. This flaw was fixed second time via upstream changeset: [5] https://github.com/yoe/nbd/commit/3ef52043861ab16352d49af89e048ba6339d6df8 References: [6] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=611187
This issue affects the versions of the nbd package, as shipped with Fedora release of 13 and 14. Please fix.
Created nbd tracking bugs for this issue Affects: fedora-all [bug 673563]
CVE Request: [7] http://www.openwall.com/lists/oss-security/2011/01/28/3
This was assigned CVE-2011-0530: http://www.openwall.com/lists/oss-security/2011/01/31/7