The Elastic Storage Server is affected by a vulnerability in IBM Spectrum Scale which could allow a local, unprivileged user to cause a kernel panic on a node running GPFS by accessing a file that is stored on a GPFS file system with mmap, or by executing a crafted file stored on a GPFS file system. (CVE-2018-1782).
CVE(s): CVE-2018-1782
Affected product(s) and affected version(s):
The Elastic Storage Server 5.3.1 thru 5.3.1.1
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10740171
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148805
The post IBM Security Bulletin: The Elastic Storage Server is affected by a vulnerability in IBM Spectrum Scale (CVE-2018-1782) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team https://ift.tt/2QqDCC9
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.