CVE-2018-10929
- Source
- https://cve.org/CVERecord?id=CVE-2018-10929
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10929.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-10929
- Downstream
- Related
- Published
- 2018-09-04T16:29:00.223Z
- Modified
- 2026-04-02T00:39:09.380729Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in RPC request using gfs2createreq in glusterfs server. An authenticated attacker could use this flaw to create arbitrary files and execute arbitrary code on glusterfs server nodes.
- References
-
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00035.html
- https://access.redhat.com/errata/RHSA-2018:2607
- https://access.redhat.com/errata/RHSA-2018:2608
- https://access.redhat.com/errata/RHSA-2018:3470
- https://lists.debian.org/debian-lts-announce/2018/09/msg00021.html
- https://lists.debian.org/debian-lts-announce/2021/11/msg00000.html
- http://www.securityfocus.com/bid/107577
- https://security.gentoo.org/glsa/201904-06
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10929
Affected packages
Git / github.com/gluster/glusterfs
Affected ranges
- Type
- GIT
- Repo
- https://github.com/gluster/glusterfs
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroducedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.0" }, { "introduced": "0" }, { "last_affected": "9.0" }, { "introduced": "0" }, { "last_affected": "6.0" }, { "introduced": "0" }, { "last_affected": "7.0" }, { "introduced": "3.12" }, { "fixed": "3.12.14" }, { "introduced": "4.1" }, { "fixed": "4.1.8" }, { "introduced": "0" }, { "last_affected": "4.0" } ] }
Affected versions
2.*
2.0.0
2.0.0rc2
2.0.0rc3
2.0.0rc5
2.0.0rc6
2.0.0rc7
2.0.0rc8
2.0.0rc9
2.0.1
branchpoint-3.*
branchpoint-3.2
tag-release-2.*
tag-release-2.0
v10.*
v10.0
v10.0rc0
v10.1
v10.2
v10.3
v10.4
v10.5
Other
v10dev
v11dev
v12dev
v6dev
v7dev
v8dev
v9dev
v11.*
v11.0
v11.0alpha
v11.0rc0
v11.1
v11.2
v2.*
v2.0.10rc1
v2.0.10rc2
v2.0.10rc3
v2.0.2
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.0.7
v2.0.8
v2.0.9
v3.*
v3.0.0
v3.0.0pre1
v3.0.1
v3.0.1rc1
v3.0.1rc2
v3.0.1rc3
v3.0.1rc4
v3.0.1rc5
v3.0.2
v3.0.2rc1
v3.0.3
v3.0.3rc1
v3.0.3rc2
v3.0.4
v3.0.4rc1
v3.0.4rc2
v3.0.4rc3
v3.0.4rc4
v3.0.4rc5
v3.0.5
v3.0.5rc1
v3.0.5rc2
v3.0.5rc3
v3.0.5rc4
v3.0.5rc5
v3.0.5rc6
v3.0.5rc7
v3.0.5rc8
v3.0.5rc9
v3.0.6
v3.0.6rc1
v3.0.6rc2
v3.0.7
v3.0.7qa1
v3.0.7qa2
v3.0.8
v3.0.8qa1
v3.1.0
v3.1.0alpha
v3.1.0beta
v3.1.0prealpha1
v3.1.0prealpha2
v3.1.0prealpha3
v3.1.0prealpha4
v3.1.0qa10
v3.1.0qa11
v3.1.0qa12
v3.1.0qa13
v3.1.0qa14
v3.1.0qa15
v3.1.0qa16
v3.1.0qa17
v3.1.0qa18
v3.1.0qa19
v3.1.0qa2
v3.1.0qa20
v3.1.0qa21
v3.1.0qa22
v3.1.0qa23
v3.1.0qa24
v3.1.0qa25
v3.1.0qa26
v3.1.0qa27
v3.1.0qa28
v3.1.0qa29
v3.1.0qa3
v3.1.0qa30
v3.1.0qa31
v3.1.0qa32
v3.1.0qa33
v3.1.0qa34
v3.1.0qa35
v3.1.0qa36
v3.1.0qa37
v3.1.0qa38
v3.1.0qa39
v3.1.0qa4
v3.1.0qa40
v3.1.0qa41
v3.1.0qa42
v3.1.0qa43
v3.1.0qa44
v3.1.0qa45
v3.1.0qa46
v3.1.0qa5
v3.1.0qa6
v3.1.0qa7
v3.1.0qa8
v3.1.0qa9
v3.1.1
v3.1.1qa1
v3.1.1qa10
v3.1.1qa11
v3.1.1qa2
v3.1.1qa3
v3.1.1qa4
v3.1.1qa5
v3.1.1qa6
v3.1.1qa7
v3.1.1qa8
v3.1.1qa9
v3.1.2
v3.1.2gsyncqa4
v3.1.2gsyncqa5
v3.1.2gsyncqa6
v3.1.2qa1
v3.1.2qa2
v3.1.2qa3
v3.1.2qa4
v3.1.3
v3.1.3qa1
v3.1.3qa2
v3.1.3qa3
v3.1.3qa4
v3.1.3qa5
v3.1.3qa6
v3.1.3qa7
v3.1.3qa8
v3.1.3solaris
v3.1.4
v3.1.4qa2
v3.1.4qa3
v3.1.5
v3.1.5qa1
v3.1.5qa2
v3.1.5qa3
v3.1.5qa4
v3.1.6
v3.1.6qa1
v3.1.6qa2
v3.1.6qa3
v3.1.6qa4
v3.1.6qa5
v3.1.6qa6
v3.1.6qa7
v3.1.6qa8
v3.1.7
v3.1.7qa1
v3.1.7qa2
v3.1.7qa3
v3.1.7qa4
v3.10.0
v3.10.0alpha1
v3.10.0rc0
v3.10.0rc1
v3.10.1
v3.10.10
v3.10.11
v3.10.12
v3.10.2
v3.10.3
v3.10.4
v3.10.5
v3.10.6
v3.10.7
v3.10.8
v3.10.9
v3.10dev
v3.11.0
v3.11.0beta1
v3.11.0rc0
v3.11.0rc1
v3.11.1
v3.11.2
v3.11.3
v3.11dev
v3.12dev
v3.2.0
v3.2.0qa10
v3.2.0qa11
v3.2.0qa12
v3.2.0qa13
v3.2.0qa14
v3.2.0qa15
v3.2.0qa16
v3.2.0qa4
v3.2.0qa5
v3.2.0qa6
v3.2.0qa7
v3.2.0qa8
v3.2.0qa9
v3.2.1
v3.2.1qa1
v3.2.1qa2
v3.2.1qa3
v3.2.1qa4
v3.2.1qa5
v3.2.2
v3.2.2qa1
v3.2.2qa2
v3.2.2qa3
v3.2.2qa4
v3.2.2qa5
v3.2.2qa7
v3.2.2qa8
v3.2.3
v3.2.3qa1
v3.2.3qa3
v3.2.3qa4
v3.2.3qa5
v3.2.3qa6
v3.2.4
v3.2.4qa1
v3.2.4qa2
v3.2.4qa3
v3.2.4qa4
v3.2.4qa5
v3.2.5
v3.2.5qa1
v3.2.5qa2
v3.2.5qa3
v3.2.5qa4
v3.2.5qa5
v3.2.5qa6
v3.2.5qa7
v3.2.5qa8
v3.2.5qa9
v3.2.6
v3.2.6p2
v3.2.6p3
v3.2.6qa1
v3.2.6qa2
v3.2.6qa3
v3.2.6qa4
v3.2.6qa5
v3.2.6qa6
v3.2.7
v3.2.7qa1
v3.2.7qa2
v3.3.0
v3.3.0.5rhs-39
v3.3.0.5rhs-40
v3.3.0beta3
v3.3.0beta4
v3.3.0qa1
v3.3.0qa10
v3.3.0qa11
v3.3.0qa12
v3.3.0qa13
v3.3.0qa14
v3.3.0qa15
v3.3.0qa16
v3.3.0qa17
v3.3.0qa18
v3.3.0qa19
v3.3.0qa2
v3.3.0qa20
v3.3.0qa21
v3.3.0qa22
v3.3.0qa23
v3.3.0qa24
v3.3.0qa25
v3.3.0qa26
v3.3.0qa27
v3.3.0qa28
v3.3.0qa29
v3.3.0qa3
v3.3.0qa30
v3.3.0qa31
v3.3.0qa32
v3.3.0qa33
v3.3.0qa34
v3.3.0qa35
v3.3.0qa36
v3.3.0qa37
v3.3.0qa38
v3.3.0qa39
v3.3.0qa4
v3.3.0qa40
v3.3.0qa41
v3.3.0qa42
v3.3.0qa43
v3.3.0qa44
v3.3.0qa45
v3.3.0qa5
v3.3.0qa6
v3.3.0qa7
v3.3.0qa8
v3.3.0qa9
v3.3.1
v3.3.1qa1
v3.3.1qa2
v3.3.1qa3
v3.3.2
v3.3.2qa1
v3.3.2qa2
v3.3.2qa3
v3.3.2qa4
v3.3beta1
v3.3beta2
v3.4.0
v3.4.0alpha
v3.4.0alpha2
v3.4.0alpha3
v3.4.0beta1
v3.4.0beta2
v3.4.0beta3
v3.4.0beta4
v3.4.0qa3
v3.4.0qa4
v3.4.0qa5
v3.4.0qa6
v3.4.0qa7
v3.4.0qa8
v3.4.1
v3.4.1qa1
v3.4.1qa2
v3.4.1qa3
v3.4.1rc1
v3.4.2
v3.4.2qa1
v3.4.2qa2
v3.4.2qa3
v3.4.2qa4
v3.4.2qa5
v3.4.3
v3.4.3alpha1
v3.4.3beta1
v3.4.3beta2
v3.4.4
v3.4.4beta1
v3.4.5
v3.4.5beta1
v3.4.5beta2
v3.4.6
v3.4.6beta1
v3.4.6beta2
v3.4.7
v3.4.7beta1
v3.4.7beta2
v3.4.7beta3
v3.4.7beta4
v3.5.0
v3.5.0beta2
v3.5.0beta3
v3.5.0beta4
v3.5.0beta5
v3.5.0qa1
v3.5.0qa3
v3.5.1
v3.5.1beta
v3.5.1beta2
v3.5.2
v3.5.2beta1
v3.5.3
v3.5.3beta1
v3.5.3beta2
v3.5.4
v3.5.4beta1
v3.5.5
v3.5.6
v3.5.7
v3.5.8
v3.5.9
v3.5beta1
v3.5qa2
v3.6.0
v3.6.0alpha1
v3.6.0beta1
v3.6.0beta2
v3.6.0beta3
v3.6.1
v3.6.2
v3.6.2beta1
v3.6.2beta2
v3.6.3
v3.6.3beta1
v3.6.3beta2
v3.6.4
v3.6.4beta1
v3.6.4beta2
v3.6.5
v3.6.6
v3.6.7
v3.6.8
v3.6.9
v3.7.0
v3.7.0alpha0
v3.7.0beta1
v3.7.0beta2
v3.7.1
v3.7.10
v3.7.11
v3.7.12
v3.7.12rc1
v3.7.13
v3.7.14
v3.7.15
v3.7.16
v3.7.17
v3.7.18
v3.7.19
v3.7.2
v3.7.20
v3.7.3
v3.7.4
v3.7.5
v3.7.6
v3.7.7
v3.7.8
v3.7.9
v3.7dev
v3.8.0
v3.8.1
v3.8.10
v3.8.11
v3.8.12
v3.8.13
v3.8.14
v3.8.15
v3.8.2
v3.8.3
v3.8.4
v3.8.5
v3.8.6
v3.8.7
v3.8.8
v3.8.9
v3.8dev
v3.8rc0
v3.8rc1
v3.8rc2
v3.9.0
v3.9.0rc2
v3.9.1
v3.9dev
v3.9rc0
v3.9rc1
v4.*
v4.0.0
v4.0.0-2
v4.0.0alpha
v4.0.0rc0
v4.0.0rc1
v4.0.1
v4.0.2
v4.0.2-1
v4.0dev
v4.1.0
v4.1.0alpha
v4.1.0rc0
v4.1.1
v4.1.2
v4.1.3
v4.1.4
v4.1.5
v4.1.6
v4.1.7
v4.1dev
v4.2dev
v5.*
v5.0
v5.0alpha
v5.0rc0
v5.0rc1
v5.1
v5.10
v5.11
v5.12
v5.13
v5.2
v5.3
v5.4
v5.5
v5.6
v5.7
v5.8
v5.9
v6.*
v6.0
v6.0alpha
v6.0rc0
v6.0rc1
v7.*
v7.0
v7.0alpha
v7.0rc0
v7.0rc1
v7.0rc2
v7.0rc3
v8.*
v8.0
v8.0alpha
v8.0rc0
v9.*
v9.0
v9.0alpha
v9.0rc0