stable

glusterfs-5.1-1.fc29

FEDORA-2018-986f0b7fb0 created by kkeithle 5 years ago for Fedora 29

5.1 GA , security fixes for: CVE-2018-14651 CVE-2018-14652 CVE-2018-14653 CVE-2018-14654 CVE-2018-14659 CVE-2018-14660 CVE-2018-14661

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-986f0b7fb0

This update has been submitted for testing by kkeithle.

5 years ago

This update has been pushed to testing.

5 years ago
User Icon besser82 commented & provided feedback 5 years ago
karma

Works great! LGTM! =)

User Icon pwalter commented & provided feedback 5 years ago
karma

Works

User Icon cserpentis commented & provided feedback 5 years ago
karma

works for me

This update has been submitted for batched by bodhi.

5 years ago

This update has been submitted for stable by bodhi.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
BZ#1644578 CVE-2018-14661 glusterfs: features/locks translator passes an user-controlled string to snprintf without a proper format string resulting in a denial of service [fedora-all]
0
0
BZ#1644579 CVE-2018-14652 glusterfs: Buffer overflow in "features/locks" translator allows for denial of service [fedora-all]
0
0
BZ#1644580 CVE-2018-14654 glusterfs: "features/index" translator can create arbitrary, empty files [fedora-all]
0
0
BZ#1644582 CVE-2018-14660 glusterfs: Repeat use of "GF_META_LOCK_KEY" xattr allows for memory exhaustion [fedora-all]
0
0
BZ#1644583 CVE-2018-14659 glusterfs: Unlimited file creation via "GF_XATTR_IOSTATS_DUMP_KEY" xattr allows for denial of service [fedora-all]
0
0
BZ#1644584 CVE-2018-14653 glusterfs: Heap-based buffer overflow via "gf_getspec_req" RPC message [fedora-all]
0
0
BZ#1644730 CVE-2018-14651 glusterfs: glusterfs server exploitable via symlinks to relative paths [fedora-all]
0
0

Automated Test Results