Ausführen von Code mit höheren Privilegien in GlusterFS
ID: | FEDORA-2018-6dc9145693 |
Distribution: | Fedora |
Plattformen: | Fedora 27 |
Datum: | Di, 1. Mai 2018, 20:35 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1088 |
Applikationen: | GlusterFS |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-6dc9145693 2018-05-01 13:40:35.611444 -------------------------------------------------------------------------------- Name : glusterfs Product : Fedora 27 Version : 3.12.9 Release : 1.fc27 URL : http://gluster.readthedocs.io/en/latest/ Summary : Distributed File System Description : GlusterFS is a distributed file-system capable of scaling to several petabytes. It aggregates various storage bricks over Infiniband RDMA or TCP/IP interconnect into one large parallel network file system. GlusterFS is one of the most sophisticated file systems in terms of features and extensibility. It borrows a powerful concept called Translators from GNU Hurd kernel. Much of the code in GlusterFS is in user space and easily manageable. This package includes the glusterfs binary, the glusterfsd daemon and the libglusterfs and glusterfs translator modules common to both GlusterFS server and client framework. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2018-1088 (Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled) -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 24 2018 Niels de Vos |