View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-5009 severity moderate: SUSE including 32 source package names (ceph-10.2.3+git.1475228057.755cf99-7.3, ceph-base-10.2.3+git.1475228057.755cf99-7.3, …), 56 product×package rows across 6 product lines (SUSE Enterprise Storage 3, SUSE Linux Enterprise Desktop 12 SP2, … (6 product lines)): Fixed 56.
The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.