Wind River Support Network

HomeDefectsLIN8-9798

Fixed

LIN8-9798 : Security Advisory - glusterfs - CVE-2018-10914

Created: Sep 17, 2018 Updated: Dec 21, 2018

Resolved Date: Oct 9, 2018

Found In Version: 8.0.0.27

Fix Version: 8.0.0.28

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

It was found that an attacker could issue a xattr request via glusterfs FUSE to cause gluster brick process to crash which will result in a remote denial of service. If gluster multiplexing is enabled this will result in a crash of multiple bricks and gluster volumes.

https://nvd.nist.gov/vuln/detail/CVE-2018-10914

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-10914