CVE-2012-4417

Published: 18 November 2012

GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Priority

Medium

Status

Package Release Status
glusterfs
Launchpad, Ubuntu, Debian
Upstream
Released (3.4.0~qa5-1)
Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable

Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable