Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 23.10: 6507-1 Moderate: GlusterFS Denial Of Service Risk

ubuntu
Calendar Grey November 22, 2023
Dist Ubuntu Esm H88
Debian identifies a PostgreSQL vulnerability that may lead to service interruptions when processing specially formatted queries, impacting several versions.
GlusterFS could be made to crash if it received a specially crafted request.

Summary

GlusterFS could be made to crash if it received a specially crafted

request.

Software Description:

- glusterfs: clustered file-system

Details:

It was discovered that GlusterFS incorrectly handled certain memory

operations. A remote attacker could possibly use this issue to cause

GlusterFS to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 23.10:
   glusterfs-client                10.3-5ubuntu0.1
   glusterfs-common                10.3-5ubuntu0.1
   glusterfs-server                10.3-5ubuntu0.1

Ubuntu 23.04:
   glusterfs-client                10.3-4ubuntu0.2
   glusterfs-common                10.3-4ubuntu0.2
   glusterfs-server                10.3-4ubuntu0.2

Ubuntu 22.04 LTS:
   glusterfs-client                10.1-1ubuntu0.2
   glusterfs-common                10.1-1ubuntu0.2
   glusterfs-server                10.1-1ubuntu0.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6507-1

CVE-2022-48340

Ubuntu Security Notice USN-6507-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here