Wind River Support Network

HomeDefectsLIN10-5001
Fixed

LIN10-5001 : Security Advisory - glusterfs - CVE-2018-14651

Created: Nov 16, 2018    Updated: Dec 24, 2018
Resolved Date: Nov 22, 2018
Found In Version: 10.17.41.1
Fix Version: 10.17.41.13
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was incomplete. A remote, authenticated attacker could use one of these flaws to execute arbitrary code, create arbitrary files, or cause denial of service on glusterfs server nodes via symlinks to relative paths.

https://nvd.nist.gov/vuln/detail/CVE-2018-14651

Other Downloads


CVEs


Live chat
Online