Description
glusterfs: glusterfs server exploitable via symlinks to relative paths (CVE-2018-14651)
glusterfs: Buffer overflow in "features/locks" translator allows for denial of service (CVE-2018-14652)
glusterfs: Heap-based buffer overflow via "gf_getspec_req" RPC message (CVE-2018-14653)
glusterfs: "features/index" translator can create arbitrary, empty files (CVE-2018-14654)
glusterfs: Unlimited file creation via "GF_XATTR_IOSTATS_DUMP_KEY" xattr allows for denial of service (CVE-2018-14659)
glusterfs: Repeat use of "GF_META_LOCK_KEY" xattr allows for memory exhaustion (CVE-2018-14660)
glusterfs: features/locks translator passes an user-controlled string to snprintf without a proper format string resulting in a denial of service (CVE-2018-14661)