Note:
This project will be discontinued after December 13, 2021. [more]
2019-01-15
It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.
| Products | Debian_linux, Ceph |
| Type | Improper Input Validation (CWE-20) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://ceph.com/releases/13-2-4-mimic-released/
• https://lists.debian.org/debian-lts-announce/2019/03/msg00002.html • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16846 • http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html |