{"id":"AZL-38437","summary":"CVE-2010-4756 affecting package orangefs 2.9.8-3","details":"The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.","modified":"2026-04-21T04:28:29.838972Z","published":"2011-03-02T20:00:01Z","upstream":["CVE-2010-4756"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2010-4756"}],"affected":[{"package":{"name":"orangefs","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/orangefs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"last_affected":"2.9.8-3"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-38437.json"}}],"schema_version":"1.7.5"}