Wind River Support Network

HomeDefectsLIN1019-3846
Acknowledged

LIN1019-3846 : Security Advisory - ceph - CVE-2019-19337

Created: Dec 24, 2019    Updated: Jan 13, 2020
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by sending a specially crafted HTTP Content-Length header to the Ceph RADOS Gateway server.

CREATE(Triage):(User=admin) [CVE-2019-19337|https://nvd.nist.gov/vuln/detail/CVE-2019-19337]

CVEs


Live chat
Online