Lucene search
UbuntuUSN-6157-1HistoryJun 12, 2023 - 12:00 a.m.
GlusterFS vulnerability
2023-06-1200:00:00
ubuntu.com
33
glusterfs
denial of service
vulnerability
ubuntu 23.04
ubuntu 22.10
ubuntu 22.04 lts
clustered file-system
event notifications
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.0%
Releases
- Ubuntu 23.04
- Ubuntu 22.10
- Ubuntu 22.04 LTS
Packages
- glusterfs - clustered file-system
Details
Tao Lyu discovered that GlusterFS did not properly handle certain event
notifications. An attacker could possibly use this issue to cause a denial
of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.04 | noarch | glusterfs-client | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-cli | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-cli-dbgsym | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-client-dbgsym | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-common | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-common-dbgsym | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | glusterfs-server | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libgfapi0 | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libgfapi0-dbgsym | < 10.3-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libgfchangelog0 | < 10.3-4ubuntu0.1 | UNKNOWN |
References
Related
cve
cve
CVE-2023-26253
2023-02-21 02:15:10
nessus
nessus
EulerOS 2.0 SP10 : glusterfs (EulerOS-SA-2023-1803)
2023-05-09 00:00:00
Amazon Linux 2 : glusterfs (ALAS-2023-2071)
2023-06-08 00:00:00
Ubuntu 16.04 ESM : GlusterFS vulnerability (USN-5989-1)
2023-03-30 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2023-1803)
2023-05-09 00:00:00
Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2023-2333)
2023-07-10 00:00:00
Huawei EulerOS: Security Advisory for glusterfs (EulerOS-SA-2023-1821)
2023-05-09 00:00:00
prion
prion
Stack overflow
2023-02-21 02:15:00
osv
osv
glusterfs vulnerability
2023-06-12 14:02:58
CVE-2023-26253
2023-02-21 02:15:10
glusterfs vulnerability
2023-03-30 11:27:38
debiancve
debiancve
CVE-2023-26253
2023-02-21 02:15:10
cvelist
cvelist
CVE-2023-26253
2023-02-21 00:00:00
redhatcve
redhatcve
CVE-2023-26253
2023-02-28 13:00:13
nvd
nvd
CVE-2023-26253
2023-02-21 02:15:10
amazon
amazon
Important: glusterfs
2023-06-05 16:39:00
ubuntucve
ubuntucve
CVE-2023-26253
2023-02-21 00:00:00
ubuntu
ubuntu
GlusterFS vulnerability
2023-03-30 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: glusterfs-10.4-1.fc37
2023-04-12 01:34:55
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.0%
Related for USN-6157-1