Subject: [SECURITY] [DLA 2806-1] glusterfs security update Package: glusterfs Version: 3.8.8-1+deb9u1 CVE IDs: CVE-2018-1088, CVE-2018-10841, CVE-2018-10904, CVE-2018-10907, CVE-2018-10911, CVE-2018-10913, CVE-2018-10914, CVE-2018-10923, CVE-2018-10926, CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, CVE-2018-14652, CVE-2018-14653, CVE-2018-14654, CVE-2018-14659, CVE-2018-14660, CVE-2018-14661 Description: Multiple security vulnerabilities in GlusterFS, a clustered file system. Buffer overflows and path traversal issues may lead to information disclosure, denial-of-service or the execution of arbitrary code. Fixed Version: 3.8.8-1+deb9u1 for Debian 9 stretch Recommendation: Upgrade your glusterfs packages. Security Tracker: glusterfs Debian LTS Security Advisories: Documentation