Vulnerabilities > CVE-2015-0847 - Code vulnerability in multiple products

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
canonical
wouter-verhelst
CWE-17
nessus
NVD
Published: 2015-05-29
Updated: 2016-12-31

Summary

nbd-server.c in Network Block Device (nbd-server) before 3.11 does not properly handle signals, which allows remote attackers to cause a denial of service (deadlock) via unspecified vectors.

Vulnerable Configurations

Part Description Count
OS
Canonical
4
Application
Wouter_Verhelst
40

Common Weakness Enumeration (CWE)

Nessus

  • NASL familyUbuntu Local Security Checks
    NASL idUBUNTU_USN-2676-1.NASL
    descriptionIt was discovered that NBD incorrectly handled IP address matching. A remote attacker could use this issue with an IP address that has a partial match and bypass access restrictions. This issue only affected Ubuntu 12.04 LTS. (CVE-2013-6410) Tuomas Rasanen discovered that NBD incorrectly handled wrong export names and closed connections during negotiation. A remote attacker could use this issue to cause NBD to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS. (CVE-2013-7441) Tuomas Rasanen discovered that NBD incorrectly handled signals. A remote attacker could use this issue to cause NBD to crash, resulting in a denial of service. (CVE-2015-0847). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id84958
    published2015-07-23
    reporterUbuntu Security Notice (C) 2015-2019 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/84958
    titleUbuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : nbd vulnerabilities (USN-2676-1)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-3271.NASL
    descriptionTuomas Rasanen discovered that unsafe signal handling in nbd-server, the server for the Network Block Device protocol, could allow remote attackers to cause a deadlock in the server process and thus a denial of service. Tuomas Rasanen also discovered that the modern-style negotiation was carried out in the main server process before forking the actual client handler. This could allow a remote attacker to cause a denial of service (crash) by querying a non-existent export. This issue only affected the oldstable distribution (wheezy).
    last seen2020-06-01
    modified2020-06-02
    plugin id83788
    published2015-05-26
    reporterThis script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/83788
    titleDebian DSA-3271-1 : nbd - security update
  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2015-393.NASL
    description - Fix CVE-2013-7441 (boo#931987) - CVE-2013-7441.patch - Fix CVE-2015-0847 (boo#930173) - nbd_signaling_CVE-2015-0847.patch
    last seen2020-06-05
    modified2015-06-04
    plugin id83981
    published2015-06-04
    reporterThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/83981
    titleopenSUSE Security Update : nbd (openSUSE-2015-393)
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2015-12703.NASL
    description - Fix unsafe signal handlers to avoid DoS attack [CVE-2015-0847]. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2015-08-14
    plugin id85391
    published2015-08-14
    reporterThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/85391
    titleFedora 21 : nbd-3.11-1.fc21 (2015-12703)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DLA-223.NASL
    descriptionA vulnerability has been discovered in nbd-server, the server for the Linux Network Block Device. CVE-2015-0847 Tuomas Räsänen discovered that unsafe signal handling is present in nbd-server. This vulnerability could be exploited by a remote client to cause a denial of service. For the oldoldstable distribution (squeeze), these problems have been fixed in version 1:2.9.16-8+squeeze2. For the oldstable, stable, and testing distributions, these problems will be fixed soon. We recommend that you upgrade your nbd-server packages. -- Wouter Verhelst NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-03-17
    modified2015-05-18
    plugin id83500
    published2015-05-18
    reporterThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/83500
    titleDebian DLA-223-1 : nbd security update
  • NASL familyFedora Local Security Checks
    NASL idFEDORA_2015-12719.NASL
    description - Fix unsafe signal handlers to avoid DoS attack [CVE-2015-0847]. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-05
    modified2015-08-14
    plugin id85392
    published2015-08-14
    reporterThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/85392
    titleFedora 22 : nbd-3.11-1.fc22 (2015-12719)

References