A vulnerabilty was found in libnbd. There is an improper bounds checking, when receiving a structured reply some offset/lengths sent by the server could cause libnbd to execute arbitrary code under control of a malicious server.
Created libnbd tracking bugs for this issue: Affects: fedora-all [bug 1776862]
External References: https://www.redhat.com/archives/libguestfs/2019-October/msg00060.html
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Statement: This vulnerability does not affect any package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.