684 matches found
Ubuntu 22.04 LTS / 23.04 : GlusterFS vulnerability (USN-6157-1)
The remote Ubuntu 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6157-1 advisory. Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of...
Amazon Linux 2 : glusterfs (ALAS-2023-2071)
The version of glusterfs installed on the remote host is prior to 3.12.2-18. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2071 advisory. In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253...
Important: glusterfs
Issue Overview: In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Affected Packages: glusterfs Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between A...
EulerOS 2.0 SP10 : glusterfs (EulerOS-SA-2023-1821)
According to the versions of the glusterfs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Note that...
Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2023-1821)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2023-1803)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : glusterfs (EulerOS-SA-2023-1803)
According to the versions of the glusterfs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Note that...
FreeBSD : py-cinder -- data leak (f4a94232-7864-4afb-bbf9-ff2dc8e288d1)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f4a94232-7864-4afb-bbf9-ff2dc8e288d1 advisory. - The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote...
Fedora: Security Advisory for glusterfs (FEDORA-2023-5a54eea360)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 37 Update: glusterfs-10.4-1.fc37
GlusterFS is a distributed file-system capable of scaling to several petabytes. It aggregates various storage bricks over TCP/IP interconnect into one large parallel network filesystem. GlusterFS is one of the most sophisticated file systems in terms of features and extensibility. It borrows a...
Fedora 37 : glusterfs (2023-5a54eea360)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5a54eea360 advisory. GlusterFS 10.4 GA Security fix for CVE-2023-26253, CVE-2022-48340 Tenable has extracted the preceding description block directly from the Fedora...
Ubuntu: Security Advisory (USN-5989-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5989-1: GlusterFS vulnerability
Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of service...
USN-5989-1 glusterfs vulnerability
Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of service...
Ubuntu 16.04 ESM : GlusterFS vulnerability (USN-5989-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5989-1 advisory. Tao Lyu discovered that GlusterFS did not properly handle certain event notifications. An attacker could possibly use this issue to cause a denial of service...
OESA-2023-1170 glusterfs security update
Security Fixes: In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read.CVE-2023-26253...
CVE-2022-48340
A flaw was found in Gluster, where GlusterFS is vulnerable to a denial of service caused by an xlators/cluster/dht/src/dht-common.c dhtsetxattrmdscbk use-after-free. By sending a specially-crafted request, a remote attacker can cause a denial of service...
SUSE CVE-2022-48340
In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dhtsetxattrmdscbk use-after-free...
SUSE CVE-2023-26253
In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read...
samba security update
4.16.4-4.0.1 - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 Orabug: 30205755 4.16.4-4 - related: rhbz2154369 - Add additional patch for CVE-2022-38023 4.16.4-3 - resolves: rhbz2154369 - Fix CVE-2022-38023 4.16.4-2 - resolves: rhbz2120956 - Do not require samb...