On 06/08/2017 05:26 PM, Eric Blake wrote: > Back in qemu 2.5, qemu-nbd was immune to port probes (a transient > server would not quit, regardless of how many probe connections > came and went, until a connection actually negotiated). But we > broke that in commit ee7d7aa
> Simple test across two terminals: > $ qemu-nbd -f raw -p 30001 file > $ nmap 127.0.0.1 -p 30001 && \ > qemu-io -c 'r 0 512' -f raw nbd://localhost:30001 This is now being assigned a CVE. -- Eric Blake, Principal Software Engineer Red Hat, Inc. +1-919-301-3266 Virtualization: qemu.org | libvirt.org
signature.asc
Description: OpenPGP digital signature
