vulnerability
Huawei EulerOS: CVE-2018-14653: glusterfs security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Oct 31, 2018 | Aug 31, 2020 | Nov 27, 2024 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Oct 31, 2018
Added
Aug 31, 2020
Modified
Nov 27, 2024
Description
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer overflow in the '__server_getspec' function via the 'gf_getspec_req' RPC message. A remote authenticated attacker could exploit this to cause a denial of service or other potential unspecified impact.
Solution(s)
huawei-euleros-2_0_sp8-upgrade-glusterfshuawei-euleros-2_0_sp8-upgrade-glusterfs-apihuawei-euleros-2_0_sp8-upgrade-glusterfs-api-develhuawei-euleros-2_0_sp8-upgrade-glusterfs-clihuawei-euleros-2_0_sp8-upgrade-glusterfs-client-xlatorshuawei-euleros-2_0_sp8-upgrade-glusterfs-develhuawei-euleros-2_0_sp8-upgrade-glusterfs-extra-xlatorshuawei-euleros-2_0_sp8-upgrade-glusterfs-fusehuawei-euleros-2_0_sp8-upgrade-glusterfs-libshuawei-euleros-2_0_sp8-upgrade-glusterfs-rdmahuawei-euleros-2_0_sp8-upgrade-glusterfs-serverhuawei-euleros-2_0_sp8-upgrade-python2-gluster
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.