Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2019-10222 - log back

CVE-2019-10222 edited at 11 Oct 2019 08:26:17

References

	https://marc.info/?l=oss-security&m=156701115910378
	https://github.com/ceph/ceph/pull/29967
+	https://github.com/ceph/ceph/commit/29753dd3ca71bba8713fcf7a09c4bb51629a6f63

Notes

+	Fixed in 14.2.3.

CVE-2019-10222 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Remote

Type

+	Denial of service

Description

+	An improper exception condition handling in Ceph allows to any single unauthenticated client to crash RGW component of Ceph by sending a special crafted HTTP request which lead to denial of service. The vulnerability affects the RGW component of Ceph, specifically the ceph-radosgw.

References

+	https://marc.info/?l=oss-security&m=156701115910378
+	https://github.com/ceph/ceph/pull/29967

Notes