GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Glusterfs | Gluster | 3.3.0 (including) | 3.3.0 (including) |
| Native Client for RHEL 5 for Red Hat Storage | RedHat | glusterfs-0:3.3.0.5rhs-37.el5 | * |
| Native Client for RHEL 6 for Red Hat Storage | RedHat | glusterfs-0:3.3.0.5rhs-37.el6 | * |
| Red Hat Storage 2.0 | RedHat | glusterfs-0:3.3.0.5rhs-37.el6rhs | * |
| Red Hat Storage 2.0 | RedHat | sos-0:2.2-17.1.el6rhs | * |
| Glusterfs | Ubuntu | lucid | * |
| Glusterfs | Ubuntu | oneiric | * |
| Glusterfs | Ubuntu | precise | * |
| Glusterfs | Ubuntu | quantal | * |
| Glusterfs | Ubuntu | raring | * |
| Glusterfs | Ubuntu | saucy | * |
| Glusterfs | Ubuntu | upstream | * |
| Glusterfs | Ubuntu | utopic | * |
| Glusterfs | Ubuntu | vivid | * |
| Glusterfs | Ubuntu | wily | * |
References
- http://rhn.redhat.com/errata/RHSA-2012-1456.html
- http://www.securityfocus.com/bid/56522
- http://www.securitytracker.com/id?1027756
- https://bugzilla.redhat.com/show_bug.cgi?id=856341
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80074
- http://rhn.redhat.com/errata/RHSA-2012-1456.html
- http://www.securityfocus.com/bid/56522
- http://www.securitytracker.com/id?1027756
- https://bugzilla.redhat.com/show_bug.cgi?id=856341
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80074