CVE-2016-5009

Published: Jul 12, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://tracker.ceph.com/issues/16297

x_refsource_CONFIRM

RHSA-2016:1384

vendor-advisory

x_refsource_REDHAT

https://github.com/ceph/ceph/commit/957ece7e95d8f8746191fd9629622d4457d690d6

x_refsource_CONFIRM

RHSA-2016:1385

vendor-advisory

x_refsource_REDHAT

https://github.com/ceph/ceph/pull/9700

x_refsource_CONFIRM

openSUSE-SU-2016:3201

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-5009

Description

Affected Products

References