QEMU NBD Server Vulnerability: DoS Attack via Socket Closure

CVE-2024-7409

Currently unrated 🤨

Key Information

Vendor: Red Hat
Status: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 8 Advanced Virtualization
Vendor: CVE Published:; 5 August 2024

Summary

A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.

Timeline

Vulnerability published.
Aug 5, 2024
Vulnerability Reserved.
Aug 2, 2024
Reported to Red Hat.
Aug 2, 2024

Collectors

NVD DatabaseMitre Database

.