4 matches found
CVE-2018-1087
CVE-2018-1087 describes a vulnerability in the Linux kernel KVM where exceptions delivered after a stack switch (via Mov SS or Pop SS) were not properly handled. The flaw could allow an unprivileged KVM guest user to crash the guest or potentially escalate privileges within the guest. The descrip...
CVE-2018-14654
CVE-2018-14654 affects GlusterFS (up to 4.1.x) via the GF_XATTROP_ENTRY_IN_KEY path in the translator used during mounting, allowing a remote attacker with access to mounted volumes to create arbitrary, empty files on the server. Exploitation details are not provided in the given documents. Remed...
CVE-2018-14652
CVE-2018-14652 affects GlusterFS up to 3.12 and 4.1.4. A buffer overflow can occur in the features/index translator via GF_XATTR_CLRLK_CMD in pl_getxattr, allowing a remote authenticated attacker to cause a denial of service on a mounted volume. The provided documents do not include specifics on ...
CVE-2018-14653
CVE-2018-14653 affects GlusterFS up to versions 4.1.4 and 3.12, with a heap-based buffer overflow in the __server_getspec path triggered by the gf_getspec_req RPC message. A remote authenticated attacker could cause a denial of service and potentially other unspecified impact. Connected advisorie...