Oval Definition:oval:org.opensuse.security:def:20169579
Revision Date:2022-05-20Version:1
Title:CVE-2016-9579
Description:

A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a bucket. A remote unauthenticated attacker could use this flaw to cause denial of service by sending a specially-crafted cross-origin HTTP request. Ceph branches 1.3.x and 2.x are affected.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-9579
Mitre CVE-2016-9579
SUSE CVE-2016-9579
SUSE-SU-2017:1479-1
SUSE-SU-2017:3171-1
openSUSE-SU-2017:0910-1
Platform(s):openSUSE Leap 42.2
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • ceph-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph is signed with openSUSE key
  • OR
  • ceph-base-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-base is signed with openSUSE key
  • OR
  • ceph-common-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-common is signed with openSUSE key
  • OR
  • ceph-fuse-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-fuse is signed with openSUSE key
  • OR
  • ceph-mds-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-mds is signed with openSUSE key
  • OR
  • ceph-mon-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-mon is signed with openSUSE key
  • OR
  • ceph-osd-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-osd is signed with openSUSE key
  • OR
  • ceph-radosgw-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-radosgw is signed with openSUSE key
  • OR
  • ceph-resource-agents-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-resource-agents is signed with openSUSE key
  • OR
  • ceph-test-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND ceph-test is signed with openSUSE key
  • OR
  • libcephfs-devel-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND libcephfs-devel is signed with openSUSE key
  • OR
  • libcephfs1-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND libcephfs1 is signed with openSUSE key
  • OR
  • librados-devel-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librados-devel is signed with openSUSE key
  • OR
  • librados2-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librados2 is signed with openSUSE key
  • OR
  • libradosstriper-devel-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND libradosstriper-devel is signed with openSUSE key
  • OR
  • libradosstriper1-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND libradosstriper1 is signed with openSUSE key
  • OR
  • librbd-devel-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librbd-devel is signed with openSUSE key
  • OR
  • librbd1-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librbd1 is signed with openSUSE key
  • OR
  • librgw-devel-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librgw-devel is signed with openSUSE key
  • OR
  • librgw2-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND librgw2 is signed with openSUSE key
  • OR
  • python-ceph-compat-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND python-ceph-compat is signed with openSUSE key
  • OR
  • python-cephfs-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND python-cephfs is signed with openSUSE key
  • OR
  • python-rados-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND python-rados is signed with openSUSE key
  • OR
  • python-rbd-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND python-rbd is signed with openSUSE key
  • OR
  • rbd-fuse-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND rbd-fuse is signed with openSUSE key
  • OR
  • rbd-mirror-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND rbd-mirror is signed with openSUSE key
  • OR
  • rbd-nbd-10.2.6+git.1489493035.3ad7a68-6.4.1 is installed
  • AND rbd-nbd is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND ceph is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND ceph is not affected
    • BACK