CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 1CVE-2022-26495 – Gentoo Linux Security Advisory 202402-10
https://notcve.org/view.php?id=CVE-2022-26495
06 Mar 2022 — In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name, resulting in a write to a dangling pointer. This issue exists for the NBD_OPT_INFO, NBD_OPT_GO, and NBD_OPT_EXPORT_NAME messages. En nbd-server en nbd versiones anteriores a 3.24, se presenta un desbordamiento de enteros con un desbordamiento de búfer en la región heap de la memoria resultante. ... • https://lists.debian.org/debian-lts-announce/2022/03/msg00014.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 2CVE-2022-26496 – Gentoo Linux Security Advisory 202402-10
https://notcve.org/view.php?id=CVE-2022-26496
06 Mar 2022 — In nbd-server in nbd before 3.24, there is a stack-based buffer overflow. An attacker can cause a buffer overflow in the parsing of the name field by sending a crafted NBD_OPT_INFO or NBD_OPT_GO message with an large value as the length of the name. En nbd-server en nbd versiones anteriores a 3.24, se presenta un desbordamiento del búfer en la región stack de la memoria. Un atacante puede causar un desbordamiento de búfer en el análisis del campo name enviando un mensaje NBD_OPT_INFO o NBD_OPT_GO diseñado c... • https://packetstorm.news/files/id/172148 • CWE-787: Out-of-bounds Write •