{"id":"CVE-2021-20286","details":"A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service.","modified":"2026-04-11T23:33:52.428540Z","published":"2021-03-15T18:15:17.783Z","related":["SUSE-SU-2021:2274-1","openSUSE-SU-2021:2274-1","openSUSE-SU-2024:10961-1"],"references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1934727"},{"type":"FIX","url":"https://gitlab.com/nbdkit/libnbd/-/commit/fb4440de9cc76e9c14bd3ddf3333e78621f40ad0"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libguestfs/libnbd","events":[{"introduced":"0"},{"fixed":"73a2a0a6e0ab8f476fc8db4d68659d0ace7306b0"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.7.3"}]}},{"type":"GIT","repo":"https://gitlab.com/nbdkit/libnbd","events":[{"introduced":"0"},{"fixed":"fb4440de9cc76e9c14bd3ddf3333e78621f40ad0"}]}],"versions":["v0.1","v0.1.1","v0.1.2","v0.1.3","v0.1.4","v0.1.5","v0.1.6","v0.1.7","v0.1.8","v0.1.9","v0.9.6","v0.9.7","v0.9.8","v0.9.9","v1.0.0","v1.1.1","v1.1.2","v1.1.3","v1.1.4","v1.1.5","v1.1.6","v1.1.7","v1.1.8","v1.1.9","v1.2.0","v1.3.1","v1.3.10","v1.3.11","v1.3.12","v1.3.2","v1.3.3","v1.3.4","v1.3.5","v1.3.6","v1.3.7","v1.3.8","v1.3.9","v1.4.0","v1.5.1","v1.5.2","v1.5.3","v1.5.4","v1.5.5","v1.5.6","v1.5.7","v1.5.8","v1.5.9","v1.6.0","v1.7.1","v1.7.2"],"database_specific":{"vanir_signatures":[{"source":"https://gitlab.com/nbdkit/libnbd@fb4440de9cc76e9c14bd3ddf3333e78621f40ad0","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"CVE-2021-20286-3bad40a8","target":{"file":"lib/opt.c"},"digest":{"line_hashes":["295872937920173992105759439729210643615","308573389181726429547977043922400153158","175463166013919943196036806588446016090","101694828172015225988139722095652755153","155459245169215735320025614723680348278","308573389181726429547977043922400153158","82981613037321556491570852698265624236","316366957531121799952122086541635333363","15730140958376456068470788044484831159"],"threshold":0.9}},{"source":"https://gitlab.com/nbdkit/libnbd@fb4440de9cc76e9c14bd3ddf3333e78621f40ad0","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"CVE-2021-20286-60e1caf6","target":{"function":"nbd_unlocked_opt_go","file":"lib/opt.c"},"digest":{"length":442,"function_hash":"26056301621750793838108321238872663894"}},{"source":"https://gitlab.com/nbdkit/libnbd@fb4440de9cc76e9c14bd3ddf3333e78621f40ad0","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"CVE-2021-20286-fd29ae99","target":{"function":"nbd_unlocked_opt_info","file":"lib/opt.c"},"digest":{"length":381,"function_hash":"315535542450696578831990891015023350946"}}],"vanir_signatures_modified":"2026-04-11T23:33:52Z","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"8.3.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-20286.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"}]}