blob: 907cb4764053249db1dc5bbfcb822028ef1cad9c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
.. _CVE-2021-3531:
CVE-2021-3531: Swift API denial of service
==========================================
* `NIST information page <https://nvd.nist.gov/vuln/detail/CVE-2021-3531>`_
Unauthenticated users of the Swift API can trigger a server-side assertion with a
malformed URL, leading to a denial of service.
Affected versions
-----------------
* Nautilus v14.2.0 and later
Fixed versions
--------------
* Pacific v16.2.4 (and later)
* Octopus v15.2.12 (and later)
* Nautilus v14.2.21 (and later)
Recommendations
---------------
All users of Ceph object storage (RGW) should upgrade.
|
