CVE-2016-5009

The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.

References

Affected packages

Git / github.com/ceph/ceph

Affected ranges

Type

GIT

Repo

https://github.com/ceph/ceph

Events

Introduced

Last affected

e832001feaf8c176593e0325c8298e3f16dfb403

Fixed

957ece7e95d8f8746191fd9629622d4457d690d6

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.94.6"
        }
    ]
}

Affected versions

mark-v0.*

mark-v0.70-wip

v0.*

v0.1

v0.10

v0.11

v0.12

v0.13

v0.14

v0.15

v0.16

v0.16.1

v0.17

v0.18

v0.19

v0.2

v0.20

v0.21

v0.21.1

v0.21.2

v0.21.3

v0.22

v0.22.1

v0.22.2

v0.23

v0.23.1

v0.23.2

v0.24

v0.24.1

v0.24.2

v0.24.3

v0.25

v0.25.1

v0.25.2

v0.26

v0.27

v0.27.1

v0.28

v0.28.1

v0.28.2

v0.29

v0.29.1

v0.3

v0.30

v0.31

v0.32

v0.33

v0.34

v0.35

v0.36

v0.37

v0.38

v0.39

v0.4

v0.40

v0.41

v0.42

v0.42.1

v0.42.2

v0.43

v0.44

v0.44.1

v0.44.2

v0.45

v0.46

v0.47

v0.47.1

v0.47.2

v0.47.3

v0.48argonaut

v0.49

v0.5

v0.50

v0.51

v0.52

v0.53

v0.54

v0.55

v0.55.1

v0.56

v0.57

v0.58

v0.59

v0.6

v0.60

v0.61

v0.62

v0.63

v0.64

v0.65

v0.66

v0.67

v0.67-rc1

v0.67-rc2

v0.67-rc3

v0.68

v0.69

v0.7

v0.7.1

v0.7.2

v0.7.3

v0.70

v0.71

v0.72

v0.72-rc1

v0.73

v0.74

v0.75

v0.76

v0.77

v0.78

v0.79

v0.8

v0.80

v0.80-rc1

v0.81

v0.82

v0.83

v0.84

v0.85

v0.86

v0.87

v0.88

v0.89

v0.9

v0.90

v0.91

v0.92

v0.93

v0.94

v0.94.1

v0.94.2

v0.94.3

v0.94.4

v0.94.5

v0.94.6

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5009.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.3"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "1.3"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "7.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "7.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "7.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "7.0"
            }
        ]
    }
]