CVE-2018-10911

Summary

A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.

Affected Software

VendorProductVersion RangeStatus
Red Hatglusterfs:n/aaffected

Weaknesses

  • CWE-502: CWE-502
  • CWE-190: CWE-190
  • CWE-200: CWE-200

ADP Enrichment

CVE Program Container

Additional References

References