The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer overflow in the '__server_getspec' function via the 'gf_getspec_req' RPC message. A remote authenticated attacker could exploit this to cause a denial of service or other potential unspecified impact.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat gluster storage |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux virtualization 4.0 |