vulnerability

Ubuntu: USN-4770-1 (CVE-2018-10924): GlusterFS vulnerabilities

Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:C)
Published
Sep 4, 2018
Added
Mar 22, 2023
Modified
Nov 15, 2024

Description

It was discovered that fsync(2) system call in glusterfs client code leaks memory. An authenticated attacker could use this flaw to launch a denial of service attack by making gluster clients consume memory of the host machine.

Solution(s)

ubuntu-pro-upgrade-glusterfs-clientubuntu-pro-upgrade-glusterfs-commonubuntu-pro-upgrade-glusterfs-server
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.