CVE-2021-3716
- Source
- https://cve.org/CVERecord?id=CVE-2021-3716
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3716.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-3716
- Downstream
- Related
- Published
- 2022-03-02T23:15:09.013Z
- Modified
- 2026-03-14T11:03:28.109293Z
- Severity
-
- 3.1 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS encryption boundary. A MitM attacker could use this flaw to inject a plaintext NBDOPTSTRUCTURED_REPLY before proxying everything else a client sends to the server, potentially leading the client to terminate the NBD session. The highest threat from this vulnerability is to system availability.
- References
-
- https://listman.redhat.com/archives/libguestfs/2021-August/msg00083.html
- https://www.openwall.com/lists/oss-security/2021/08/18/2
- https://bugzilla.redhat.com/show_bug.cgi?id=1994695
- https://gitlab.com/nbdkit/nbdkit/-/commit/09a13dafb7bb3a38ab52eb5501cba786365ba7fd
- https://gitlab.com/nbdkit/nbdkit/-/commit/6c5faac6a37077cf2366388a80862bb00616d0d8
Affected packages
Git / gitlab.com/nbdkit/nbdkit
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.com/nbdkit/nbdkit
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedFixedFixed
- Database specific
{ "versions": [ { "introduced": "1.11.8" }, { "fixed": "1.24.6" }, { "introduced": "1.25.1" }, { "fixed": "1.26.5" }, { "introduced": "1.27.1" }, { "fixed": "1.27.6" } ] }
Affected versions
v1.*
v1.11.10
v1.11.11
v1.11.12
v1.11.13
v1.11.14
v1.11.15
v1.11.8
v1.11.9
v1.12.0
v1.13.0
v1.13.1
v1.13.2
v1.13.3
v1.13.4
v1.13.5
v1.13.6
v1.13.7
v1.13.8
v1.13.9
v1.14.0
v1.15.1
v1.15.2
v1.15.3
v1.15.4
v1.15.5
v1.15.6
v1.15.7
v1.15.8
v1.16.0
v1.17.1
v1.17.10
v1.17.11
v1.17.2
v1.17.3
v1.17.4
v1.17.5
v1.17.6
v1.17.7
v1.17.8
v1.17.9
v1.18.0
v1.19.1
v1.19.10
v1.19.11
v1.19.12
v1.19.2
v1.19.3
v1.19.4
v1.19.5
v1.19.6
v1.19.7
v1.19.8
v1.19.9
v1.20.0
v1.21.1
v1.21.10
v1.21.11
v1.21.12
v1.21.13
v1.21.14
v1.21.15
v1.21.16
v1.21.17
v1.21.18
v1.21.19
v1.21.2
v1.21.20
v1.21.21
v1.21.22
v1.21.23
v1.21.24
v1.21.25
v1.21.26
v1.21.3
v1.21.4
v1.21.5
v1.21.6
v1.21.7
v1.21.8
v1.21.9
v1.23.1
v1.23.10
v1.23.11
v1.23.12
v1.23.13
v1.23.2
v1.23.3
v1.23.4
v1.23.5
v1.23.6
v1.23.7
v1.23.8
v1.23.9
v1.24.0
v1.24.1
v1.24.2
v1.24.3
v1.24.4
v1.24.5
v1.25.1
v1.25.2
v1.25.3
v1.25.4
v1.25.5
v1.25.6
v1.25.7
v1.25.8
v1.25.9
v1.26.0
v1.26.1
v1.26.2
v1.26.3
v1.26.4
v1.27.1
v1.27.2
v1.27.3
v1.27.4
v1.27.5
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.0"
}
]
}
]
vanir_signatures
[
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2021-3716-07c259cd",
"target": {
"file": "server/protocol-handshake-newstyle.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"17736055569549823576078601167558441071",
"252569956524523289579052347941166243611",
"297470718666234456831894338929195417055"
]
},
"signature_version": "v1",
"source": "https://gitlab.com/nbdkit/nbdkit@09a13dafb7bb3a38ab52eb5501cba786365ba7fd"
},
{
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2021-3716-72881b3f",
"target": {
"file": "server/protocol-handshake-newstyle.c",
"function": "negotiate_handshake_newstyle_options"
},
"digest": {
"length": 9714.0,
"function_hash": "278656485481587851966178619826305884851"
},
"signature_version": "v1",
"source": "https://gitlab.com/nbdkit/nbdkit@09a13dafb7bb3a38ab52eb5501cba786365ba7fd"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-3716.json"