[Gluster-users] Question about CVE-2018-10924
Pranith Kumar Karampuri
pkarampu at redhat.com
Tue Oct 30 11:10:15 UTC 2018
On Tue, Oct 30, 2018 at 2:51 PM Hongzhi, Song <hongzhi.song at windriver.com>
wrote:
> Hi Pranith and other friends,
>
> Does this CVE apply for glusger-v3.11.1?
>
It was later found to be not a CVE, only a memory leak.
No, this bug is introduced in 3.12 branch and fixed in 3.12 branch as well.
Patch that introduced leak:
https://review.gluster.org/q/Id2025a7e965f0578af35b1abaac793b019c43cc4
introduced it
Patch that fixed the leak:
https://review.gluster.org/q/I0456f9ad6f77ce6248b747964a037193af3a3da7
Hope that helps.
>
> I applied the patch for v3.11.1. There was an issue that the files
> was read-only after mounting the volume.
>
> When I try to write the file with vim tool, it prompts "Transport
> endpoint is not connected ".
>
> Hopefully waiting for your help.
>
> Best Regards,
> --Hongzhi
>
--
Pranith
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.gluster.org/pipermail/gluster-users/attachments/20181030/7e78e5db/attachment.html>
More information about the Gluster-users
mailing list