{"vulnerability": "cve-2019-20429", "sightings": [{"uuid": "391a50bc-5174-4691-b413-dd31e1cd4303", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-20429", "type": "seen", "source": "https://t.me/cveNotify/435", "content": "\ud83d\udea8 CVE-2019-20429\nIn the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic (via a modified lm_bufcount field) due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between sptlrpc_svc_unwrap_request and lustre_msg_hdr_size_v2.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-27T08:37:47.000000Z"}]}