Vulnerabilities in The Gluster Project

5 results

CVE-2018-14653MEDIUMThe Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer overflow in the '__server_getspec' function viaEPSS 2.8%CVE-2018-14652MEDIUMThe Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code hEPSS 2.7%CVE-2018-14661MEDIUMIt was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8.4, as shipped with Red Hat Gluster Storage,EPSS 2.7%CVE-2018-14654MEDIUMThe Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to moEPSS 2.6%CVE-2018-14659MEDIUMThe Gluster file system through versions 4.1.4 and 3.1.2 is vulnerable to a denial of service attack via use of the 'GF_XATTR_IOSTATS_DUMP_KEPSS 2.2%