Spike Spiegel

**Name of the Vulnerable Software and Affected Versions** Ganglia version 3.1.1 **Description** The issue is related to a stack-based buffer overflow in the `process path` function, which can be exploited by remote attackers to cause a denial of service (crash) by sending a request to the gmetad service with a long pathname. Additionally, there are multiple vulnerabilities in the gmetad package that can lead to breaches of confidentiality, integrity, and availability of protected information, and these can be exploited remotely. **Recommendations** For Ganglia version 3.1.1, consider disabling the `process path` function in the gmetad service as a temporary workaround to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.