Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-11-01	CVE-2018-14660	A flaw was found in glusterfs server through versions 4.1.4 and 3.1.2 which allowed repeated usage of GF_META_LOCK_KEY xattr. network low complexity gluster redhat debian	6.5
2018-10-31	CVE-2018-14661	It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8.4, as shipped with Red Hat Gluster Storage, was vulnerable to a format string attack. network low complexity gluster debian redhat	6.5
2018-09-04	CVE-2018-10930	A flaw was found in RPC request using gfs3_rename_req in glusterfs server. network low complexity gluster redhat debian opensuse	6.5
2018-09-04	CVE-2018-10924	Missing Release of Resource after Effective Lifetime vulnerability in Gluster Glusterfs It was discovered that fsync(2) system call in glusterfs client code leaks memory. network low complexity gluster CWE-772	6.5
2018-09-04	CVE-2018-10914	It was found that an attacker could issue a xattr request via glusterfs FUSE to cause gluster brick process to crash which will result in a remote denial of service. network low complexity gluster redhat debian opensuse	6.5
2018-09-04	CVE-2018-10913	An information disclosure vulnerability was discovered in glusterfs server. network low complexity gluster redhat debian opensuse	6.5