A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that ends with two slashes it can cause the rgw to crash, resulting in a denial of service. The greatest threat to the system is of availability.
References
Configurations
History
07 Nov 2023, 03:38
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
23 Oct 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Oct 2022, 12:38
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-617 |
25 May 2021, 16:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:redhat:ceph_storage:4.0:*:*:*:*:*:*:* cpe:2.3:a:redhat:ceph:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
|
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/14/5 - Mailing List, Patch, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZRUNDH2TJRZRWL3DCH2PQ6KROWTPQ7AJ/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LPCJN2YDZCBMF4FOJXSTAADKFGEQEO7O/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FX5ZHI5L7FOHXOSEV3TYBAL66DMLJ7V5/ - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/05/17/7 - Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1955326 - Issue Tracking, Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
23 May 2021, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 May 2021, 05:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-20 | |
References |
|
18 May 2021, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-18 12:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-3531
Mitre link : CVE-2021-3531
CVE.ORG link : CVE-2021-3531
JSON object : View
Products Affected
fedoraproject
- fedora
redhat
- ceph
- ceph_storage