{"vulnerability": "CVE-2019-20425", "sightings": [{"uuid": "a12684ea-ab95-45ac-9669-5e4eba208fa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-20425", "type": "seen", "source": "https://t.me/cveNotify/431", "content": "\ud83d\udea8 CVE-2019-20425\nIn the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustre_msg_string, there is no validation of a certain length value derived from lustre_msg_buflen_v2.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-27T08:37:44.000000Z"}]}