[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 223-1] nbd security update

Package        : nbd
Version        : 1:2.9.16-8+squeeze2
CVE ID         : CVE-2015-0847
Debian Bug     : 784657

A vulnerability has been discovered in nbd-server, the server for the
Linux Network Block Device.


    Tuomas Räsänen discovered that unsafe signal handling is present in
    nbd-server. This vulnerability could be exploited by a remote client
    to cause a denial of service.

For the oldoldstable distribution (squeeze), these problems have been
fixed in version 1:2.9.16-8+squeeze2.

For the oldstable, stable, and testing distributions, these problems
will be fixed soon.

We recommend that you upgrade your nbd-server packages.

Wouter Verhelst

Attachment: signature.asc
Description: Digital signature

Reply to: