4 matches found
CVE-2018-12088
S3QL before 2.27 mishandles checksumming, and consequently allows replay attacks in which an attacker who controls the backend can present old versions of the filesystem metadata database as up-to-date, temporarily inject zero-valued bytes into files, or temporarily hide parts of files. This is...
Linux Distros Unpatched Vulnerability : CVE-2018-12088
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - S3QL before 2.27 mishandles checksumming, and consequently allows replay attacks in which an attacker who controls the backend can present old versions of the...
CVE-2018-12088
S3QL before 2.27 mishandles checksumming, and consequently allows replay attacks in which an attacker who controls the backend can present old versions of the filesystem metadata database as up-to-date, temporarily inject zero-valued bytes into files, or temporarily hide parts of files. This is...
CVE-2018-12088
The vulnerability CVE-2018-12088 affects S3QL prior to version 2.27. The root cause is mishandling in the checksumming process (checksum_basic_mapping), enabling replay attacks where an attacker who controls the backend can present stale filesystem metadata as current, temporarily inject zero-val...