CVE-2011-0530

Buffer overflow in the mainloop function in nbd-server.c in the server in Network Block Device (nbd) before 2.9.20 might allow remote attackers to execute arbitrary code via a long request.  NOTE: this issue exists because of a CVE-2005-3534 regression.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
wouter_verhelstnbd
𝑥
≤ 2.9.19
wouter_verhelstnbd
2.9.0
wouter_verhelstnbd
2.9.1
wouter_verhelstnbd
2.9.2
wouter_verhelstnbd
2.9.3
wouter_verhelstnbd
2.9.4
wouter_verhelstnbd
2.9.5
wouter_verhelstnbd
2.9.6
wouter_verhelstnbd
2.9.7
wouter_verhelstnbd
2.9.8
wouter_verhelstnbd
2.9.9
wouter_verhelstnbd
2.9.10
wouter_verhelstnbd
2.9.11
wouter_verhelstnbd
2.9.12
wouter_verhelstnbd
2.9.13
wouter_verhelstnbd
2.9.14
wouter_verhelstnbd
2.9.15
wouter_verhelstnbd
2.9.16
wouter_verhelstnbd
2.9.17
wouter_verhelstnbd
2.9.18
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nbd
bullseye (security)
1:3.21-1+deb11u1
fixed
bullseye
1:3.21-1+deb11u1
fixed
etch
not-affected
bookworm
1:3.24-1.1
fixed
sid
1:3.26.1-6
fixed
trixie
1:3.26.1-6
fixed