Lucene search
+L

2976 matches found

NVD
NVD
added 2016/07/12 7:59 p.m.28 views

CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.1AI score0.0248EPSS
Exploits0References6
OSV
OSV
added 2016/07/12 7:59 p.m.4 views

DEBIAN-CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.7AI score0.0248EPSS
Exploits0References1
OSV
OSV
added 2016/07/12 7:59 p.m.12 views

CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.1AI score
Exploits0References6
Prion
Prion
added 2016/07/12 7:59 p.m.17 views

Command injection

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

4CVSS6.6AI score0.0248EPSS
Exploits0References6Affected Software7
Cvelist
Cvelist
added 2016/07/12 7:0 p.m.35 views

CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.3AI score0.0248EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2016/07/12 7:0 p.m.57 views

CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.4AI score0.0248EPSS
Exploits0
CVE
CVE
added 2016/07/12 7:0 p.m.106 views

CVE-2016-5009

The CVE-2016-5009 issue affects Ceph where the handle_command function in mon/Monitor.cc could be triggered by an empty or crafted prefix, allowing a remote authenticated user to cause a denial of service (segmentation fault and monitor crash). The linked advisories (Red Hat RHSA-2016:1384, SUSE/...

6.5CVSS6.1AI score0.0248EPSS
Exploits0References6Affected Software6
UbuntuCve
UbuntuCve
added 2016/07/12 12:0 a.m.24 views

CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.6AI score0.0248EPSS
Exploits0References2
OSV
OSV
added 2016/07/12 12:0 a.m.4 views

UBUNTU-CVE-2016-5009

The handlecommand function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service segmentation fault and ceph monitor crash via an 1 empty or 2 crafted prefix...

6.5CVSS6.6AI score0.0248EPSS
Exploits0References3
CNVD
CNVD
added 2016/07/06 12:0 a.m.6 views

Red Hat Ceph Storage Denial of Service Vulnerability

Red Hat Ceph Storage is a suite of scalable, open software-defined storage platforms from Red Hat USA. A denial of service vulnerability exists in the 'handlecommand' function in Red Hat Ceph Storage. An attacker can exploit this vulnerability by sending a specially crafted prefix to cause a deni...

6.5CVSS7.4AI score0.0248EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/07/05 9:2 p.m.32 views

Moderate: Red Hat Security Advisory: ceph security update

An updated ceph package that fixes one security issue is now available for Red Hat Ceph Storage 1.3 for Ubuntu 14.04. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

6.5CVSS6.4AI score0.0248EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/07/05 9:2 p.m.7 views

crash: mon_command crashes ceph monitors on receiving empty prefix

A flaw was found in the way handlecommand function would validate prefix value from user. An authenticated attacker could send a specially crafted prefix value resulting in ceph monitor crash...

6.5CVSS5.7AI score0.0248EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/07/05 8:27 p.m.50 views

Moderate: Red Hat Security Advisory: ceph security update

An updated ceph package that fixes one security issue is now available for Red Hat Ceph Storage 1.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

6.5CVSS6.4AI score0.0248EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/07/05 8:27 p.m.10 views

crash: mon_command crashes ceph monitors on receiving empty prefix

A flaw was found in the way handlecommand function would validate prefix value from user. An authenticated attacker could send a specially crafted prefix value resulting in ceph monitor crash...

6.5CVSS5.7AI score0.0248EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2016/06/30 6:49 a.m.29 views

CVE-2016-5009

A flaw was found in the way handlecommand function would validate prefix value from user. An authenticated attacker could send a specially crafted prefix value resulting in ceph monitor crash...

6.5CVSS3AI score0.0248EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/06/21 12:0 a.m.5 views

PT-2016-6217 · Red Hat +3 · Ceph +3

Name of the Vulnerable Software and Affected Versions: Ceph affected versions not specified Description: The issue allows remote authenticated users to cause a denial of service, resulting in a segmentation fault and ceph monitor crash. This can be achieved by sending an empty or crafted prefix t...

7.5CVSS6.5AI score0.04396EPSS
Exploits2References48
RedHat Linux
RedHat Linux
added 2016/05/12 7:58 a.m.61 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise MRG 2.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.4AI score0.00397EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2016/05/12 12:0 a.m.79 views

kernel security and bug fix update

3.10.0-327.18.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.18.2 - lib keys: Fix ASN.1 indefinite length object parsing David Howells 1308814 1308815 CVE-2016-0758 3.10.0-327.18.1 - scsi bnx2fc: Fix FCP RSP residual parsing Maurizio Lombardi 1322279 1306342 - mm madvise: fix...

7.2CVSS0.4AI score0.00397EPSS
Exploits0
OSV
OSV
added 2016/03/17 2:39 p.m.39 views

SUSE-SU-2016:0806-1 Security update for ceph

This update provides Ceph 0.8.11, which fixes the following security issue: - CVE-2015-5245: A CRLF injection vulnerability in the Ceph Object Gateway aka radosgw or RGW could allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted bucket...

4.3CVSS6.8AI score0.01907EPSS
Exploits0References8
Cent OS
Cent OS
added 2016/02/17 1:50 a.m.70 views

sos security update

CentOS Errata and Security Advisory CESA-2016:0188 An updated sos package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base...

7.8CVSS7.1AI score0.00438EPSS
Exploits0References7
Rows per page
Query Builder