发布于3月6日3月6日 Members SUSE: CVE-2022-3854: SUSE Linux Security Advisory Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:N/A:C) Published 03/06/2023 Created 03/28/2023 Added 03/28/2023 Modified 01/28/2025 Description A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service. Solution(s) suse-upgrade-ceph suse-upgrade-ceph-base suse-upgrade-ceph-common suse-upgrade-ceph-fuse suse-upgrade-ceph-grafana-dashboards suse-upgrade-ceph-immutable-object-cache suse-upgrade-ceph-mds suse-upgrade-ceph-mgr suse-upgrade-ceph-mgr-cephadm suse-upgrade-ceph-mgr-dashboard suse-upgrade-ceph-mgr-diskprediction-local suse-upgrade-ceph-mgr-k8sevents suse-upgrade-ceph-mgr-modules-core suse-upgrade-ceph-mgr-rook suse-upgrade-ceph-mon suse-upgrade-ceph-osd suse-upgrade-ceph-prometheus-alerts suse-upgrade-ceph-radosgw suse-upgrade-ceph-test suse-upgrade-cephadm suse-upgrade-cephfs-mirror suse-upgrade-cephfs-shell suse-upgrade-cephfs-top suse-upgrade-libcephfs-devel suse-upgrade-libcephfs2 suse-upgrade-libcephsqlite suse-upgrade-libcephsqlite-devel suse-upgrade-librados-devel suse-upgrade-librados2 suse-upgrade-libradospp-devel suse-upgrade-librbd-devel suse-upgrade-librbd1 suse-upgrade-librgw-devel suse-upgrade-librgw2 suse-upgrade-python3-ceph-argparse suse-upgrade-python3-ceph-common suse-upgrade-python3-cephfs suse-upgrade-python3-rados suse-upgrade-python3-rbd suse-upgrade-python3-rgw suse-upgrade-rados-objclass-devel suse-upgrade-rbd-fuse suse-upgrade-rbd-mirror suse-upgrade-rbd-nbd References https://attackerkb.com/topics/cve-2022-3854 CVE - 2022-3854
