Multiple vulnerabilities were found in nbd, which could lead to remote execution of arbitrary code.
|Package||sys-block/nbd on all architectures|
|Affected versions||< 2.9.22|
|Unaffected versions||>= 2.9.22|
nbd is a userland client/server for kernel network block device.
Multiple vulnerabilities have been discovered in nbd. Please review the CVE identifiers referenced below for details.
nbd allows remote attackers to cause a denial of service (NULL pointer dereference and crash) or the execution of arbitrary code.
There is no known workaround at this time.
All nbd users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=sys-block/nbd-2.9.22"