CVE-2023-5871

Summary

A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for accessing Block Devices such as hard disks over a Network. This issue may allow a malicious NBD server to cause a Denial of Service.

Affected Software

VendorProductVersion RangeStatus
Red HatRed Hat Enterprise Linux 90:1.18.1-3.el9 < *unaffected

Weaknesses

  • CWE-617: Reachable Assertion

Workarounds

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

ADP Enrichment

CVE Program Container

Additional References

References