(RHSA-2022:1174) Moderate: Red Hat Ceph Storage 5.1 Security, Enhancement, and Bug Fix update

2022-04-0408:52:58

access.redhat.com

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.005 Low

EPSS

Percentile

76.3%

JSON

Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.

Security Fix(es):

ceph object gateway: radosgw: CRLF injection (CVE-2021-3524)
ceph: RGW unauthenticated denial of service (CVE-2021-3531)
ceph: Ceph volume does not honour osd_dmcrypt_key_size (CVE-2021-3979)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es)

These new packages include numerous bug fixes and enhancements. space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Ceph Storage Release Notes for information on the most significant of these changes:

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/5.1/html/release_notes/index

All users of Red Hat Ceph Storage are advised to upgrade to these new packages, which provide numerous enhancements and bug fixes.

OSVersionArchitecturePackageVersionFilename
RedHat8s390xpython3-ceph-common< 16.2.7-98.el8cppython3-ceph-common-16.2.7-98.el8cp.s390x.rpm
RedHat8x86_64python3-rados-debuginfo< 16.2.7-98.el8cppython3-rados-debuginfo-16.2.7-98.el8cp.x86_64.rpm
RedHat8ppc64lelibrbd1< 16.2.7-98.el8cplibrbd1-16.2.7-98.el8cp.ppc64le.rpm
RedHat8x86_64ceph-common< 16.2.7-98.el8cpceph-common-16.2.7-98.el8cp.x86_64.rpm
RedHat8x86_64librados-devel-debuginfo< 16.2.7-98.el8cplibrados-devel-debuginfo-16.2.7-98.el8cp.x86_64.rpm
RedHat8s390xpython3-rbd< 16.2.7-98.el8cppython3-rbd-16.2.7-98.el8cp.s390x.rpm
RedHat8s390xpython3-rgw-debuginfo< 16.2.7-98.el8cppython3-rgw-debuginfo-16.2.7-98.el8cp.s390x.rpm
RedHat8s390xlibcephfs2< 16.2.7-98.el8cplibcephfs2-16.2.7-98.el8cp.s390x.rpm
RedHat8noarchceph-iscsi< 3.5-2.el8cpceph-iscsi-3.5-2.el8cp.noarch.rpm
RedHat8x86_64librgw-devel< 16.2.7-98.el8cplibrgw-devel-16.2.7-98.el8cp.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	s390x	python3-ceph-common	< 16.2.7-98.el8cp	python3-ceph-common-16.2.7-98.el8cp.s390x.rpm
RedHat	8	x86_64	python3-rados-debuginfo	< 16.2.7-98.el8cp	python3-rados-debuginfo-16.2.7-98.el8cp.x86_64.rpm
RedHat	8	ppc64le	librbd1	< 16.2.7-98.el8cp	librbd1-16.2.7-98.el8cp.ppc64le.rpm
RedHat	8	x86_64	ceph-common	< 16.2.7-98.el8cp	ceph-common-16.2.7-98.el8cp.x86_64.rpm
RedHat	8	x86_64	librados-devel-debuginfo	< 16.2.7-98.el8cp	librados-devel-debuginfo-16.2.7-98.el8cp.x86_64.rpm
RedHat	8	s390x	python3-rbd	< 16.2.7-98.el8cp	python3-rbd-16.2.7-98.el8cp.s390x.rpm
RedHat	8	s390x	python3-rgw-debuginfo	< 16.2.7-98.el8cp	python3-rgw-debuginfo-16.2.7-98.el8cp.s390x.rpm
RedHat	8	s390x	libcephfs2	< 16.2.7-98.el8cp	libcephfs2-16.2.7-98.el8cp.s390x.rpm
RedHat	8	noarch	ceph-iscsi	< 3.5-2.el8cp	ceph-iscsi-3.5-2.el8cp.noarch.rpm
RedHat	8	x86_64	librgw-devel	< 16.2.7-98.el8cp	librgw-devel-16.2.7-98.el8cp.x86_64.rpm