CVE-2018-7262

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service.
Configurations

Configuration 1

cpe:2.3:a:redhat:ceph:*:*:*:*:*:*:*:*
cpe:2.3:a:redhat:ceph:13.0.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:ceph:13.0.1:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:27:*:*:*:*:*:*:*

Information

Published : 2018-03-19 09:29

Updated : 2019-02-04 05:25


NVD link : CVE-2018-7262

Mitre link : CVE-2018-7262

Products Affected
No products.
CWE