CVE-2018-14652

Published: Oct 31, 2018Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GF_XATTR_CLRLK_CMD' xattr in the 'pl_getxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of service.

Affected (8)

Products: Redhat: Gluster Storage, Enterprise Linux Server, Enterprise Linux Virtualization, Enterprise Virtualization Host · Debian: Debian Linux

4 products

Gluster Storage

Enterprise Linux Server

Enterprise Linux Virtualization

Enterprise Virtualization Host

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Gluster Storage	From 3.0.0 to 3.1.2
Redhat Gluster Storage	From 4.1.0 to 4.1.8

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Virtualization	Version 4.0
Redhat Enterprise Virtualization Host	Version 4.0

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (14)

https://access.redhat.com/errata/RHSA-2018:3431

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:3432

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:3470

Source: secalert@redhat.com

Third Party AdvisoryVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14652

Source: secalert@redhat.com

Issue TrackingVendor Advisory

https://lists.debian.org/debian-lts-announce/2018/11/msg00003.html

Source: secalert@redhat.com

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2021/11/msg00000.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201904-06

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3431

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:3432

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:3470

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14652

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

https://lists.debian.org/debian-lts-announce/2018/11/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2021/11/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201904-06

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.