Wind River Support Network

HomeDefectsLIN8-9824

Fixed

LIN8-9824 : Security Advisory - glusterfs - CVE-2018-10926

Created: Sep 17, 2018 Updated: Dec 21, 2018

Resolved Date: Oct 9, 2018

Found In Version: 8.0.0.27

Fix Version: 8.0.0.28

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

A flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. An authenticated attacker could use this flaw to write files to an arbitrary location via path traversal and execute arbitrary code on a glusterfs server node.

https://nvd.nist.gov/vuln/detail/CVE-2018-10926

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-10926