Vulnerability: Memory Leakage in glusterfs dic_unserialize Function

Vulnerability: Memory Leakage in glusterfs dic_unserialize Function

CVE-2018-10911 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.

Learn more about our Web Application Penetration Testing UK.