A flaw was found in Red Hat Ceph before 0.94.9-8. The way Ceph Object Gateway handles POST object requests permits an authenticated attacker to launch a denial of service attack by sending null or specially crafted POST object requests.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "radosgw-dbgsym": "0.80.11-0ubuntu1.14.04.3", "rest-bench-dbgsym": "0.80.11-0ubuntu1.14.04.3", "rest-bench": "0.80.11-0ubuntu1.14.04.3", "radosgw-dbg": "0.80.11-0ubuntu1.14.04.3", "libcephfs1-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-dbg": "0.80.11-0ubuntu1.14.04.3", "ceph-fuse": "0.80.11-0ubuntu1.14.04.3", "librados-dev": "0.80.11-0ubuntu1.14.04.3", "ceph-mds": "0.80.11-0ubuntu1.14.04.3", "rbd-fuse-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-fs-common": "0.80.11-0ubuntu1.14.04.3", "librados2": "0.80.11-0ubuntu1.14.04.3", "ceph-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph": "0.80.11-0ubuntu1.14.04.3", "librados-dev-dbgsym": "0.80.11-0ubuntu1.14.04.3", "librados2-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-mds-dbgsym": "0.80.11-0ubuntu1.14.04.3", "librbd-dev": "0.80.11-0ubuntu1.14.04.3", "ceph-fuse-dbg": "0.80.11-0ubuntu1.14.04.3", "ceph-fs-common-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-fuse-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-mds-dbg": "0.80.11-0ubuntu1.14.04.3", "ceph-resource-agents": "0.80.11-0ubuntu1.14.04.3", "librbd1-dbg": "0.80.11-0ubuntu1.14.04.3", "libcephfs1-dbg": "0.80.11-0ubuntu1.14.04.3", "librbd1-dbgsym": "0.80.11-0ubuntu1.14.04.3", "libcephfs-dev": "0.80.11-0ubuntu1.14.04.3", "ceph-fs-common-dbg": "0.80.11-0ubuntu1.14.04.3", "librbd1": "0.80.11-0ubuntu1.14.04.3", "python-ceph": "0.80.11-0ubuntu1.14.04.3", "ceph-test-dbg": "0.80.11-0ubuntu1.14.04.3", "ceph-common": "0.80.11-0ubuntu1.14.04.3", "libcephfs-jni-dbg": "0.80.11-0ubuntu1.14.04.3", "libcephfs-jni-dbgsym": "0.80.11-0ubuntu1.14.04.3", "rest-bench-dbg": "0.80.11-0ubuntu1.14.04.3", "libcephfs-java": "0.80.11-0ubuntu1.14.04.3", "ceph-test-dbgsym": "0.80.11-0ubuntu1.14.04.3", "ceph-test": "0.80.11-0ubuntu1.14.04.3", "rbd-fuse": "0.80.11-0ubuntu1.14.04.3", "libcephfs1": "0.80.11-0ubuntu1.14.04.3", "ceph-common-dbg": "0.80.11-0ubuntu1.14.04.3", "librados2-dbg": "0.80.11-0ubuntu1.14.04.3", "libcephfs-jni": "0.80.11-0ubuntu1.14.04.3", "radosgw": "0.80.11-0ubuntu1.14.04.3", "ceph-common-dbgsym": "0.80.11-0ubuntu1.14.04.3", "rbd-fuse-dbg": "0.80.11-0ubuntu1.14.04.3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "radosgw-dbg": "10.2.2-0ubuntu0.16.04.2", "libcephfs1-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-dbg": "10.2.2-0ubuntu0.16.04.2", "ceph-mds": "10.2.2-0ubuntu0.16.04.2", "rbd-fuse-dbgsym": "10.2.2-0ubuntu0.16.04.2", "rbd-mirror-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-dbgsym": "10.2.2-0ubuntu0.16.04.2", "libradosstriper1-dbgsym": "10.2.2-0ubuntu0.16.04.2", "rbd-nbd": "10.2.2-0ubuntu0.16.04.2", "ceph-mds-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-fuse-dbg": "10.2.2-0ubuntu0.16.04.2", "ceph-fuse-dbgsym": "10.2.2-0ubuntu0.16.04.2", "rbd-nbd-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-resource-agents": "10.2.2-0ubuntu0.16.04.2", "librbd1-dbg": "10.2.2-0ubuntu0.16.04.2", "librbd1-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-fs-common-dbg": "10.2.2-0ubuntu0.16.04.2", "python-ceph": "10.2.2-0ubuntu0.16.04.2", "ceph-test-dbg": "10.2.2-0ubuntu0.16.04.2", "ceph-common": "10.2.2-0ubuntu0.16.04.2", "libcephfs-jni-dbg": "10.2.2-0ubuntu0.16.04.2", "rbd-fuse": "10.2.2-0ubuntu0.16.04.2", "libcephfs-java": "10.2.2-0ubuntu0.16.04.2", "ceph-test": "10.2.2-0ubuntu0.16.04.2", "python-rados": "10.2.2-0ubuntu0.16.04.2", "libcephfs1": "10.2.2-0ubuntu0.16.04.2", "radosgw": "10.2.2-0ubuntu0.16.04.2", "ceph-common-dbgsym": "10.2.2-0ubuntu0.16.04.2", "libcephfs-jni": "10.2.2-0ubuntu0.16.04.2", "radosgw-dbgsym": "10.2.2-0ubuntu0.16.04.2", "rbd-mirror-dbg": "10.2.2-0ubuntu0.16.04.2", "librados-dev": "10.2.2-0ubuntu0.16.04.2", "libradosstriper-dev": "10.2.2-0ubuntu0.16.04.2", "ceph-fuse": "10.2.2-0ubuntu0.16.04.2", "librgw2": "10.2.2-0ubuntu0.16.04.2", "ceph-fs-common": "10.2.2-0ubuntu0.16.04.2", "librados2": "10.2.2-0ubuntu0.16.04.2", "ceph": "10.2.2-0ubuntu0.16.04.2", "librados2-dbgsym": "10.2.2-0ubuntu0.16.04.2", "librgw2-dbg": "10.2.2-0ubuntu0.16.04.2", "librbd-dev": "10.2.2-0ubuntu0.16.04.2", "python-cephfs": "10.2.2-0ubuntu0.16.04.2", "ceph-fs-common-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-mds-dbg": "10.2.2-0ubuntu0.16.04.2", "rbd-mirror": "10.2.2-0ubuntu0.16.04.2", "libcephfs1-dbg": "10.2.2-0ubuntu0.16.04.2", "libcephfs-dev": "10.2.2-0ubuntu0.16.04.2", "librbd1": "10.2.2-0ubuntu0.16.04.2", "rbd-nbd-dbg": "10.2.2-0ubuntu0.16.04.2", "python-rbd": "10.2.2-0ubuntu0.16.04.2", "libcephfs-jni-dbgsym": "10.2.2-0ubuntu0.16.04.2", "libradosstriper1-dbg": "10.2.2-0ubuntu0.16.04.2", "librgw2-dbgsym": "10.2.2-0ubuntu0.16.04.2", "ceph-test-dbgsym": "10.2.2-0ubuntu0.16.04.2", "librgw-dev": "10.2.2-0ubuntu0.16.04.2", "ceph-common-dbg": "10.2.2-0ubuntu0.16.04.2", "librados2-dbg": "10.2.2-0ubuntu0.16.04.2", "libradosstriper1": "10.2.2-0ubuntu0.16.04.2", "rbd-fuse-dbg": "10.2.2-0ubuntu0.16.04.2" } ] }