AI Score
Confidence
High
EPSS
Percentile
68.8%
It was discovered that fsync(2) system call in glusterfs client code leaks memory. An authenticated attacker could use this flaw to launch a denial of service attack by making gluster clients consume memory of the host machine.
lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html
bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10924
review.gluster.org/#/c/glusterfs/+/20723/
security.gentoo.org/glsa/201904-06