CVE-2019-3821 – Ubuntu Security Notice USN-4035-1

https://notcve.org/view.php?id=CVE-2019-3821

27 Mar 2019 — A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaust file descriptors for ceph-radosgw service resulting in a remote denial of service. Se ha encontrado un error en la forma en la que el frontend de civetweb manejaba peticiones para el servidor RGW de ceph con SSL habilitado. Un atacante no autenticado podría crear múltiples conexiones al gateway RADOS de ceph p... • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3821 • CWE-772: Missing Release of Resource after Effective Lifetime •