We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client request. When a client requests block status information for a very large data range, exceeding a certain limit, it causes an internal error in the nbdkit, leading to a denial of service.
Reserved 2025-05-07 | Published 2025-06-09 | Updated 2025-06-09 | Assigner redhatInteger Overflow or Wraparound
2025-05-12: | Reported to Red Hat. |
2025-04-23: | Made public. |
access.redhat.com/security/cve/CVE-2025-47712
bugzilla.redhat.com/show_bug.cgi?id=2365724 (RHBZ#2365724)
Support options