CVE-2011-1925
EPSS 1.4%
Description
nbd-server.c in Network Block Device (nbd-server) 2.9.21 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by causing a negotiation failure, as demonstrated by specifying a name for a non-existent export.
How to fix CVE-2011-1925
To remediate CVE-2011-1925, upgrade the affected package to a fixed version below.
- Debian/nbd—upgrade to 1:2.9.22-1 or later
Is CVE-2011-1925 being exploited?
Low — EPSS is 1.4%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:2.9.22-1