CVE-2018-16846

Опубликовано: 15 янв. 2019

Источник: debian

EPSS Низкий

Описание

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ceph	fixed	12.2.11+dfsg1-1		package

Примечания

http://tracker.ceph.com/issues/35994
https://github.com/ceph/ceph/commit/4337e6a7d9f92c8549ebee20d0dd67a01e49857f
https://github.com/ceph/ceph/commit/ab29bed2fc9f961fe895de1086a8208e21ddaddc
Backport to 12.2.11: https://tracker.ceph.com/issues/37831

EPSS

Процентиль: 89%

0.04603

Низкий

Связанные уязвимости

CVE-2018-16846

CVSS3: 6.5

ubuntu

около 7 лет назад

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

CVE-2018-16846

CVSS3: 6.5

redhat

около 7 лет назад

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

CVE-2018-16846

CVSS3: 6.5

nvd

около 7 лет назад

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

GHSA-77fq-6x6c-cq7q

CVSS3: 6.5

github

больше 3 лет назад

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

BDU:2020-01538

CVSS3: 6.5

fstec

около 7 лет назад

Уязвимость системы хранения данных Ceph, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 89%

0.04603

Низкий