VYPR
Unrated severityOSV Advisory· Published Nov 1, 2018· Updated Aug 5, 2024

CVE-2018-14660

CVE-2018-14660

Description

A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated usage of GF_META_LOCK_KEY xattr. A remote, authenticated attacker could use this flaw to create multiple locks for single inode by using setxattr repetitively resulting in memory exhaustion of glusterfs server node.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gluster/GlusterfsOSV2 versions
    branchpoint-3.2, v3.1.0, v3.1.1, …+ 1 more
    • (no CPE)range: branchpoint-3.2, v3.1.0, v3.1.1, …
    • (no CPE)range: <=4.1.4, <=3.1.2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.