CVE-2019-20427

CVE-2019-20427

In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size and tgt_brw_write leads to a tgt_shortio2pages integer signedness error.

Source: CVE-2019-20427

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다