Information on source package ceph

Available versions

ReleaseVersion
jessie0.80.7-2+deb8u2
stretch10.2.5-7.2
buster10.2.5-7.2
sid10.2.5-7.2

Open issues

BugjessiestretchbustersidDescription
CVE-2017-7519fixedvulnerable (no DSA)vulnerablevulnerablelibradosstriper processes arbitrary printf placeholders in user input

Resolved issues

BugDescription
CVE-2016-9579RGW server DoS via request with invalid HTTP Origin header
CVE-2016-8626RGW Denial of Service by sending POST object with null conditions
CVE-2016-7031The RGW code in Ceph before 10.0.1, when authenticated-read ACL is ...
CVE-2016-5009The handle_command function in mon/Monitor.cc in Ceph allows remote ...
CVE-2015-5245CRLF injection vulnerability in the Ceph Object Gateway (aka radosgw ...

Search for package or bug name: Reporting problems