Please help me identify whether we are vulnerable to CVE-2015-5245
Problem description: Ceph RadosGW versions up to v0.80.10 are vulnerable to HTTP header modification attack.
Resolution proposal: Apply appropriate patchset preventing HTTP header manipulation.
Upstream bug report: http://tracker.ceph.com/issues/12537
How to check/reproduce: Mentioned in upstream bug report (curl)
Please help me identify whether we are vulnerable to CVE-2015-5245
Problem description:
Ceph RadosGW versions up to v0.80.10 are vulnerable to HTTP header modification attack.
Resolution proposal:
Apply appropriate patchset preventing HTTP header manipulation.
Upstream bug report: tracker. ceph.com/ issues/ 12537
http://
How to check/reproduce:
Mentioned in upstream bug report (curl)