{"id":"RHSA-2018:3432","summary":"Red Hat Security Advisory: glusterfs security and bug fix update","modified":"2026-03-11T07:12:47.583462Z","published":"2024-09-22T16:32:52Z","upstream":["CVE-2018-14651","CVE-2018-14652","CVE-2018-14653","CVE-2018-14654","CVE-2018-14659","CVE-2018-14660","CVE-2018-14661"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:3432"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1610743"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618221"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1619627"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1622649"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1623749"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1623874"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1624444"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1625622"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1626780"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1627098"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1627617"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1627639"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1630688"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1631329"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1631372"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1631576"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632557"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1632974"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1633431"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635926"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635929"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1636880"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1636902"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1640135"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641489"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641586"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643355"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3432.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14651"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14651"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14651"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14652"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14652"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14652"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14653"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14653"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14653"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14654"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14654"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14654"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14659"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14659"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14659"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14660"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14660"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14660"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-14661"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-14661"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14661"}],"affected":[{"package":{"name":"glusterfs","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-api"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api-devel","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-api-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-cli","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-client-xlators","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-client-xlators"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-debuginfo","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-devel","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-events","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-events"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-fuse","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-fuse"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-ganesha","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-ganesha"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-geo-replication","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-geo-replication"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-libs","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-rdma","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-rdma"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-resource-agents","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-resource-agents"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-server","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/glusterfs-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"python2-gluster","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/python2-gluster"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"redhat-storage-server","ecosystem":"Red Hat:storage:3.4:server:el7","purl":"pkg:rpm/redhat/redhat-storage-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.4.1.0-1.el7rhgs"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-api"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api-devel","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-api-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-cli","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-client-xlators","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-client-xlators"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-devel","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-fuse","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-fuse"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-libs","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-rdma","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/glusterfs-rdma"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"python2-gluster","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/python2-gluster"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-api"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-api-devel","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-api-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-cli","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-client-xlators","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-client-xlators"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-debuginfo","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-devel","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-fuse","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-fuse"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-libs","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"glusterfs-rdma","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/glusterfs-rdma"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}},{"package":{"name":"python2-gluster","ecosystem":"Red Hat:storage:3:client:el7","purl":"pkg:rpm/redhat/python2-gluster"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.12.2-25.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3432.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}]}