Opensuse : Security Vulnerabilities, CVEs, Published In 2018 (Information Leak)

CVE-2018-10927

A flaw was found in RPC request using gfs3_lookup_req in glusterfs server. An authenticated attacker could use this flaw to leak information and execute remote denial of service by crashing gluster brick process.
Max CVSS
8.1
EPSS Score
0.55%
Published
2018-09-04
Updated
2022-04-12

CVE-2018-10913

An information disclosure vulnerability was discovered in glusterfs server. An attacker could issue a xattr request via glusterfs FUSE to determine the existence of any file.
Max CVSS
6.5
EPSS Score
0.16%
Published
2018-09-04
Updated
2022-04-22

CVE-2018-10911

A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
Max CVSS
7.5
EPSS Score
0.61%
Published
2018-09-04
Updated
2022-04-22

CVE-2017-5188

The bs_worker code in open build service before 20170320 followed relative symlinks, allowing reading of files outside of the package source directory during build, allowing leakage of private information.
Max CVSS
7.5
EPSS Score
0.18%
Published
2018-03-01
Updated
2019-10-09
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close