mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
815 B
815 B
CVE-2019-20426
Description
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function ldlm_cancel_hpreq_check, there is no lock_count bounds check.
POC
Reference
- http://lustre.org/
- http://lustre.org/
- http://wiki.lustre.org/Lustre_2.12.3_Changelog
- http://wiki.lustre.org/Lustre_2.12.3_Changelog
Github
No PoCs found on GitHub currently.