Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2018-16889HistoryJan 28, 2019 - 2:29 p.m.
CVE-2018-16889
2019-01-2814:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.002 Low
EPSS
Percentile
52.1%
Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key information in log files via plaintext. Versions up to v13.2.4 are vulnerable.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ceph | <Â 12.2.11+dfsg1-1 | ceph_12.2.11+dfsg1-1_all.deb |
| Debian | 11 | all | ceph | <Â 12.2.11+dfsg1-1 | ceph_12.2.11+dfsg1-1_all.deb |
| Debian | 10 | all | ceph | <Â 12.2.11+dfsg1-1 | ceph_12.2.11+dfsg1-1_all.deb |
| Debian | 999 | all | ceph | <Â 12.2.11+dfsg1-1 | ceph_12.2.11+dfsg1-1_all.deb |
| Debian | 13 | all | ceph | <Â 12.2.11+dfsg1-1 | ceph_12.2.11+dfsg1-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2019-01-28 14:29:00
ubuntucve
ubuntucve
CVE-2018-16889
2019-01-28 00:00:00
cvelist
cvelist
CVE-2018-16889
2019-01-28 14:00:00
nessus
nessus
Photon OS 2.0: Ceph PHSA-2019-2.0-0154
2019-05-15 00:00:00
SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2019:2364-1)
2019-09-16 00:00:00
SUSE SLED15 / SLES15 Security Update : ceph (SUSE-SU-2019:2049-1)
2019-08-12 00:00:00
osv
osv
CVE-2018-16889
2019-01-28 14:29:00
redhatcve
redhatcve
CVE-2018-16889
2019-10-08 17:56:58
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2364-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2049-1)
2021-06-09 00:00:00
Fedora Update for ceph FEDORA-2019-6a2e72916a
2019-05-07 00:00:00
veracode
veracode
Information Disclosure
2019-08-22 02:27:57
cve
cve
CVE-2018-16889
2019-01-28 14:29:00
photon
photon
fedora
fedora
[SECURITY] Fedora 29 Update: ceph-12.2.11-1.fc29
2019-02-20 03:07:29
redhat
redhat
suse
suse
Security update for ceph (important)
2019-03-08 00:00:00
ubuntu
ubuntu
Ceph vulnerabilities
2019-06-25 00:00:00