Vulnerability CVE-2019-3821

Vulnerability Name:

CVE-2019-3821 (CCN-159565)

Assigned:

2019-02-11

Published:

2019-02-11

Updated:

2020-11-13

Summary:

A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaust file descriptors for ceph-radosgw service resulting in a remote denial of service.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-772
CWE-772

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2019-3821

Source: CCN
Type: Red Hat Bugzilla Bug 1656852
(CVE-2019-3821) - CVE-2019-3821 ceph: radosgw: Resource exhaustion via TCP connection to port serving the SSL endpoint

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3821

Source: XF
Type: UNKNOWN
ceph-cve20193821-dos(159565)

Source: CCN
Type: civetweb GIT Repository
Fix file descriptor leak. #33

Source: MISC
Type: Issue Tracking, Third Party Advisory
https://github.com/ceph/civetweb/pull/33

Source: UBUNTU
Type: Third Party Advisory
USN-4035-1

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2019-3821

Vulnerable Configuration:

Configuration 1:

cpe:/a:ceph:civetweb:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:redhat:ceph:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20193821	V	CVE-2019-3821	2023-06-22
oval:org.opensuse.security:def:7460	P	ceph-common-16.2.11.58+g38d6afd3b78-150400.3.6.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51949	P	Security update for libarchive (Moderate)	2022-11-10
oval:org.opensuse.security:def:624	P	Security update for python-crcmod, python-cryptography, python-cryptography-vectors (Moderate) (in QA)	2022-09-26
oval:org.opensuse.security:def:3516	P	gtk2-data-2.24.31-9.6.28 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3504	P	gnome-settings-daemon-3.20.1-50.16.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:2866	P	arpwatch-2.1a15-5.12.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2864	P	apr-util-devel-1.6.1-18.2.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2886	P	ceph-common-16.2.7.654+gd5a90ff46f0-150400.1.4 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94516	P	ceph-common-16.2.7.654+gd5a90ff46f0-150400.1.4 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:24	P	ceph-common-15.2.9.83+g4275378de0-3.17.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:100393	P	(Important)	2022-03-30
oval:org.opensuse.security:def:953	P	Security update for ldns (Moderate)	2022-03-02
oval:org.opensuse.security:def:112052	P	ceph-16.2.6.45+g8fda9838398-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:65326	P	Security update for MozillaFirefox (Important)	2021-12-10
oval:org.opensuse.security:def:69569	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:105604	P	ceph-16.2.6.45+g8fda9838398-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:64769	P	Security update for hivex (Moderate)	2021-09-23
oval:org.opensuse.security:def:69716	P	Security update for krb5 (Important)	2021-08-20
oval:org.opensuse.security:def:48085	P	libXt6-1.1.4-3.57 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48221	P	libvte9-0.28.2-19.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48100	P	libcares2-1.9.1-9.4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48086	P	libXtst6-1.2.2-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:68660	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:72000	P	login_defs-4.8.1-2.43 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71783	P	ceph-common-15.2.9.83+g4275378de0-3.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100800	P	ceph-common-15.2.9.83+g4275378de0-3.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62042	P	ceph-common-15.2.9.83+g4275378de0-3.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:68203	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP2) (Important)	2021-07-15
oval:org.opensuse.security:def:69674	P	Security update for caribou (Important)	2021-06-17
oval:org.opensuse.security:def:48546	P	libruby2_1-2_1-2.1.2-12.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48414	P	expat-2.1.0-17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48786	P	libdirectfb-1_7-1-32bit-1.7.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48638	P	unixODBC-2.3.4-6.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:68763	P	Security update for python-py (Moderate)	2021-06-04
oval:org.opensuse.security:def:1568	P	Security update for python-py (Moderate)	2021-06-04
oval:org.opensuse.security:def:49146	P	Security update for slurm_20_11 (Important)	2021-05-27
oval:org.opensuse.security:def:51887	P	Security update for python3 (Important)	2021-05-17
oval:org.opensuse.security:def:69611	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:68103	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:49438	P	Security update for nodejs14 (Moderate)	2021-01-13
oval:org.opensuse.security:def:99915	P	(Important)	2020-12-09
oval:org.opensuse.security:def:2206	P	python3-pywbem-0.11.0-2.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71454	P	ceph-common-15.2.2.18+g1dbcddb5d8-1.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71556	P	libfreebl3-3.47.1-3.37.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107059	P	ceph-common-15.2.2.18+g1dbcddb5d8-1.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49011	P	libgio-fam-2.48.2-12.15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61713	P	ceph-common-15.2.2.18+g1dbcddb5d8-1.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49000	P	kernel-default-extra-4.12.14-120.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72116	P	bubblewrap-0.2.0-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:93680	P	ceph-common-15.2.2.18+g1dbcddb5d8-1.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71443	P	avahi-0.7-1.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116617	P	ceph-common-15.2.2.18+g1dbcddb5d8-1.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2797	P	Security update for openexr (Moderate)	2020-12-02
oval:org.opensuse.security:def:2785	P	Security update for netpbm (Moderate)	2020-12-02
oval:org.opensuse.security:def:2856	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:2779	P	Security update for bluez (Moderate)	2020-12-02
oval:org.opensuse.security:def:2850	P	Security update for python (Important)	2020-12-02
oval:org.opensuse.security:def:2826	P	Security update for openexr (Moderate)	2020-12-02
oval:org.opensuse.security:def:2817	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:2811	P	Security update for libopenmpt (Important)	2020-12-02
oval:org.opensuse.security:def:2775	P	Security update for ppp (Important)	2020-12-02
oval:org.opensuse.security:def:49293	P	perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50044	P	389-ds on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50507	P	Security update for strongswan (Important)	2020-12-01
oval:org.opensuse.security:def:49887	P	java-1_8_0-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49313	P	python3-numpy on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64856	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:49789	P	libtidy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:72933	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:49292	P	patch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49242	P	libtag1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49084	P	e2fsprogs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49065	P	ceph-common on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49643	P	imlib2-loaders on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50611	P	Security update for elfutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:50442	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:65416	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50538	P	Security update for python-Flask (Low)	2020-12-01
oval:org.opensuse.security:def:50372	P	Security update for python-Jinja2 (Important)	2020-12-01
oval:org.opensuse.security:def:50643	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50589	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:49311	P	python3-Werkzeug on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49211	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66360	P	ceph-common on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50282	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:73051	P	ceph-common on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66268	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:90182	P	Security update for ceph (Important)	2019-08-05
oval:org.opensuse.security:def:104437	P	Security update for ceph (Important)	2019-08-05
oval:org.opensuse.security:def:90782	P	Security update for ceph (Important)	2019-08-05
oval:org.opensuse.security:def:103837	P	Security update for ceph (Important)	2019-08-05
oval:org.opensuse.security:def:97747	P	Security update for ceph (Important)	2019-08-05
oval:com.ubuntu.disco:def:201938210000000	V	CVE-2019-3821 on Ubuntu 19.04 (disco) - medium.	2019-03-27
oval:com.ubuntu.bionic:def:20193821000	V	CVE-2019-3821 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-27
oval:com.ubuntu.cosmic:def:201938210000000	V	CVE-2019-3821 on Ubuntu 18.10 (cosmic) - medium.	2019-03-27
oval:com.ubuntu.cosmic:def:20193821000	V	CVE-2019-3821 on Ubuntu 18.10 (cosmic) - medium.	2019-03-27
oval:com.ubuntu.bionic:def:201938210000000	V	CVE-2019-3821 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-27
oval:com.ubuntu.trusty:def:20193821000	V	CVE-2019-3821 on Ubuntu 14.04 LTS (trusty) - medium.	2019-03-27
oval:com.ubuntu.xenial:def:201938210000000	V	CVE-2019-3821 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-27
oval:com.ubuntu.xenial:def:20193821000	V	CVE-2019-3821 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-27

BACK