A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by sending a specially crafted HTTP Content-Length header to the Ceph RADOS Gateway server.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ceph_storage | Redhat | 3.3 (including) | 3.3 (including) |