VDB
DEBIAN-CVE-2018-10911
DEBIAN-CVE-2018-10911
PUBLISHED
CVSS 7.5 HIGH
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | glusterfs | 0, 0, 0 |
| Debian:13 | glusterfs | 0, 0, 0 |
| Debian:14 | glusterfs | 0, 0, 0 |
| Debian:11 | glusterfs | 0, 0, 0 |
Timeline
- Sep 4, 2018 CVE Published
- Apr 28, 2026 CVE Updated