Описание
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | not-affected | 4.1.4-1 |
| disco | not-affected | 4.1.4-1 |
| eoan | not-affected | 4.1.4-1 |
| esm-apps/bionic | released | 3.13.2-1ubuntu1+esm1 |
| esm-apps/focal | not-affected | 4.1.4-1 |
| esm-apps/xenial | released | 3.7.6-1ubuntu1+esm1 |
| esm-infra-legacy/trusty | released | 3.4.2-1ubuntu1+esm1 |
| focal | not-affected | 4.1.4-1 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
A flaw was found in the way dic_unserialize function of glusterfs does ...
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
ELSA-2018-3242: glusterfs security, bug fix, and enhancement update (MODERATE)
5 Medium
CVSS2
7.5 High
CVSS3