CVE-2022-0485

Summary

A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdcopy was blindly treating the completion of an asynchronous command as successful, rather than checking the *error parameter. This could result in the silent creation of a corrupted destination image.

Affected Software

VendorProductVersion RangeStatus
n/alibnbdFixed in libnbd v1.11.8affected

Weaknesses

  • CWE-252: CWE-252 - Unchecked Return Value.

ADP Enrichment

CVE Program Container

Additional References

References