Fedora 37: glusterfs 2023-5a54eea360 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-5a54eea360
2023-04-12 01:32:13.145118
--------------------------------------------------------------------------------

Name        : glusterfs
Product     : Fedora 37
Version     : 10.4
Release     : 1.fc37
URL         : https://docs.gluster.org/
Summary     : Distributed File System
Description :
GlusterFS is a distributed file-system capable of scaling to several
petabytes. It aggregates various storage bricks over TCP/IP interconnect
into one large parallel network filesystem. GlusterFS is one of the
most sophisticated file systems in terms of features and extensibility.
It borrows a powerful concept called Translators from GNU Hurd kernel.
Much of the code in GlusterFS is in user space and easily manageable.

This package includes the glusterfs binary, the glusterfsd daemon and the
libglusterfs and glusterfs translator modules common to both GlusterFS server
and client framework.

--------------------------------------------------------------------------------
Update Information:

GlusterFS 10.4 GA Security fix for CVE-2023-26253, CVE-2022-48340
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  6 2023 Kaleb S. KEITHLEY  - 10.4-1
- 10.4 GA
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2173922 - CVE-2022-48340 glusterfs: heap use-after-free in dht_setxattr_mds_cbk() in dht-common.c
        https://bugzilla.redhat.com/show_bug.cgi?id=2173922
  [ 2 ] Bug #2173923 - CVE-2023-26253 glusterfs: stack-based buffer overflow in notify() in fuse-bridge.c
        https://bugzilla.redhat.com/show_bug.cgi?id=2173923
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-5a54eea360' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 37: glusterfs 2023-5a54eea360

April 12, 2023
GlusterFS 10.4 GA Security fix for CVE-2023-26253, CVE-2022-48340

Summary

GlusterFS is a distributed file-system capable of scaling to several

petabytes. It aggregates various storage bricks over TCP/IP interconnect

into one large parallel network filesystem. GlusterFS is one of the

most sophisticated file systems in terms of features and extensibility.

It borrows a powerful concept called Translators from GNU Hurd kernel.

Much of the code in GlusterFS is in user space and easily manageable.

This package includes the glusterfs binary, the glusterfsd daemon and the

libglusterfs and glusterfs translator modules common to both GlusterFS server

and client framework.

Update Information:

GlusterFS 10.4 GA Security fix for CVE-2023-26253, CVE-2022-48340

Change Log

* Thu Apr 6 2023 Kaleb S. KEITHLEY - 10.4-1 - 10.4 GA

References

[ 1 ] Bug #2173922 - CVE-2022-48340 glusterfs: heap use-after-free in dht_setxattr_mds_cbk() in dht-common.c https://bugzilla.redhat.com/show_bug.cgi?id=2173922 [ 2 ] Bug #2173923 - CVE-2023-26253 glusterfs: stack-based buffer overflow in notify() in fuse-bridge.c https://bugzilla.redhat.com/show_bug.cgi?id=2173923

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-5a54eea360' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : glusterfs
Product : Fedora 37
Version : 10.4
Release : 1.fc37
URL : https://docs.gluster.org/
Summary : Distributed File System

Related News

Top NAS Devices Are Being Targeted by This Dangerous Malware

Important Linux Kernel DoS, Code Execution Bugs Fixed

Important Fix for c-ares DoS Bug Released

Linux Kernel DoS, Info Disclosure Bugs Fixed

News

Advisories

HOWTOs

Features

Linux Container Security Primer
Email Phishing Using Kali Linux
Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy