[Bugs] [Bug 1625089] CVE-2018-10911 glusterfs: Improper deserialization in dict.c :dict_unserialize() can allow attackers to read arbitrary memory
bugzilla at redhat.com
bugzilla at redhat.com
Thu Sep 6 14:45:56 UTC 2018
https://bugzilla.redhat.com/show_bug.cgi?id=1625089
Worker Ant <bugzilla-bot at gluster.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|POST |MODIFIED
--- Comment #4 from Worker Ant <bugzilla-bot at gluster.org> ---
COMMIT: https://review.gluster.org/21096 committed in release-4.1 by "jiffin
tony Thottan" <jthottan at redhat.com> with a commit message- dict: handle
negative key/value length while unserialize
Fixes: bz#1625089
Change-Id: Ie56df0da46c242846a1ba51ccb9e011af118b119
Signed-off-by: Amar Tumballi <amarts at redhat.com>
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=z4sp7a4xx9&a=cc_unsubscribe
More information about the Bugs
mailing list