CVE-2019-14851

Description

A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence of commands could possibly trigger an assertion failure, causing nbdkit to exit. This issue only affected nbdkit versions 1.12.7, 1.14.1, and 1.15.1.

Affected Software
References

Software	From	Fixed in
nbdkit_project / nbdkit	-	1.12.7
nbdkit_project / nbdkit	1.14.0	1.14.1
nbdkit_project / nbdkit	1.15.0	1.15.1

https://bugzilla.redhat.com/show_bug.cgi?id=1757259
https://www.redhat.com/archives/libguestfs/2019-September/msg00272.html

Severity: Medium

CVE: CVE-2019-14851
Published: Mar 18, 2021
Updated: Apr 13, 2023
Exploit:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Low
Score: 3.5
AV:N/AC:M/Au:S/C:N/I:N/A:P

CWE-617

CVE-2019-14851

Description

Details

CVSS v3

CVSS v2

CWEs