UBUNTU-CVE-2019-10222

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2019-10222
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-10222.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2019-10222
Upstream
Downstream
Related
Published
2019-08-28T14:00:00Z
Modified
2025-09-08T16:45:22Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denial of service for Ceph RGW clients.

References

Affected packages

Ubuntu:18.04:LTS / ceph

Package

Name
ceph
Purl
pkg:deb/ubuntu/ceph@12.2.12-0ubuntu0.18.04.2?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
12.2.12-0ubuntu0.18.04.2

Affected versions

12.*

12.2.0-0ubuntu1
12.2.1-0ubuntu1
12.2.2-0ubuntu1
12.2.2-0ubuntu2
12.2.4-0ubuntu1
12.2.4-0ubuntu1.1
12.2.7-0ubuntu0.18.04.1
12.2.8-0ubuntu0.18.04.1
12.2.8-0ubuntu0.18.04.2
12.2.11-0ubuntu0.18.04.1
12.2.11-0ubuntu0.18.04.2
12.2.12-0ubuntu0.18.04.1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-base"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-common"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-fuse"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-mds"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-mgr"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-mon"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-osd"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-resource-agents"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "ceph-test"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libcephfs-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libcephfs-java"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libcephfs-jni"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libcephfs2"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librados-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librados2"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libradosstriper-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "libradosstriper1"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librbd-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librbd1"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librgw-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "librgw2"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python-ceph"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python-cephfs"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python-rados"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python-rbd"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python-rgw"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python3-ceph-argparse"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python3-cephfs"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python3-rados"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python3-rbd"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "python3-rgw"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "rados-objclass-dev"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "radosgw"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "rbd-fuse"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "rbd-mirror"
        },
        {
            "binary_version": "12.2.12-0ubuntu0.18.04.2",
            "binary_name": "rbd-nbd"
        }
    ],
    "availability": "No subscription required"
}