34 matches found
DLA-4460-1 ceph - security update
Bulletin has no description...
Azure Linux 3.0 Security Update: ceph (CVE-2022-3854)
The version of ceph installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3854 advisory. - A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL...
[SECURITY] [DSA 5825-1] ceph security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5825-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 06, 2024 https://www.debian.org/security/faq -...
RHSA-2016:1384 Red Hat Security Advisory: ceph security update
Bulletin has no description...
SUSE-SU-2023:1581-2 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2022-0670: Fixed user/tenant read/write access to an entire file system bsc1201837. - CVE-2022-3650: Fixed Python script that allowed privilege escalation from ceph to root bsc1204430. - CVE-2022-3854: Fixed possible Do...
SUSE-SU-2023:1584-1 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2022-0670: Fixed user/tenant read/write access to an entire file system bsc1201837. - CVE-2022-3650: Fixed Python script that allowed privilege escalation from ceph to root bsc1204430. - CVE-2022-3854: Fixed possible Do...
SUSE-SU-2023:1581-1 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2022-0670: Fixed user/tenant read/write access to an entire file system bsc1201837. - CVE-2022-3650: Fixed Python script that allowed privilege escalation from ceph to root bsc1204430. - CVE-2022-3854: Fixed possible Do...
SUSE-SU-2023:1580-1 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2022-0670: Fixed user/tenant read/write access to an entire file system bsc1201837. - CVE-2022-3650: Fixed Python script that allowed privilege escalation from ceph to root bsc1204430. - CVE-2022-3854: Fixed possible Do...
SUSE-SU-2022:4501-1 Security update for ceph
This update for ceph fixes the following issues: ceph was updated to the Pacific release 16.2.9-536-g41a9f9a5573: + bsc1195359, bsc1200553 rgw: check bucket shard init status in RGWRadosBILogTrimCR + bsc1194131 ceph-volume: honour osddmcryptkeysize option CVE-2021-3979 + bsc1200064, Remove last...
SUSE-SU-2022:2818-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 16.2.9-536-g41a9f9a5573: + bsc1195359, bsc1200553 rgw: check bucket shard init status in RGWRadosBILogTrimCR + bsc1194131 ceph-volume: honour osddmcryptkeysize option CVE-2021-3979 - Update to 16.2.9-158-gd93952c7eea: + cmake: check for...
OPENSUSE-SU-2021:0833-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
SUSE-SU-2021:1835-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
SUSE-SU-2021:1834-1 Security update for ceph
This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - CVE-2021-3509 fix cookie injection issue bsc1186021 - CVE-2021-3531 RGWSwiftWebsiteHandler::iswebdir checks empty subdirname bsc1186020 - CVE-2021-3524 sanitize \r in s3 CORSConfiguration’s ExposeHeader...
OPENSUSE-SU-2021:0672-1 Security update for ceph
This update for ceph fixes the following issues: - ceph was updated to 15.2.11-83-g8a15f484c2: CVE-2021-20288: Fixed unauthorized globalid reuse bsc1183074. disk gets replaced with no rocksdb/wal bsc1184231. BlueStore handles huge4GB writes from RocksDB to BlueFS poorly, potentially causing data...
SUSE-SU-2021:0023-1 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2020-27781: Fixed a privilege escalation via the cephvolumeclient Python interface bsc1179802 bsc1180155. Non-security issues fixed: - Fixes an issue when check in legacy collection reaches end. bsc1179139 - Fixes an...
SUSE-SU-2020:3895-1 Security update for ceph
This update for ceph fixes the following issues: Security issue fixed: - CVE-2020-27781: Fixed a privilege escalation via the cephvolumeclient Python interface bsc1180155, bsc1179802. Non-security issues fixed: - Update to 15.2.8-80-g1f4b6229ca: + Rebase on tip of upstream 'octopus' branch, SHA1...
OPENSUSE-SU-2020:2082-1 Security update for ceph
This update for ceph fixes the following issues: - CVE-2020-25660: Bring back CEPHXV2 authorizer challenges bsc1177843. - Added --container-init feature bsc1177319, bsc1163764 - Made journald as the logdriver again bsc1177933 - Fixes a condition check for copytree, copyfiles, and movefiles in...
SUSE-SU-2020:3473-1 Security update for ceph
This update for ceph fixes the following issues: - CVE-2020-25660: Bring back CEPHXV2 authorizer challenges bsc1177843. - Added --container-init feature bsc1177319, bsc1163764 - Made journald as the logdriver again bsc1177933 - Fixes a condition check for copytree, copyfiles, and movefiles in...
SUSE-SU-2020:3257-1 Security update for ceph, deepsea
This update for ceph, deepsea fixes the following issues: - Update to 14.2.13-398-gb6c514eec7: + Upstream 14.2.13 release see https://ceph.io/releases/v14-2-13-nautilus-released/ bsc1151612, bsc1158257 ceph-volume: major batch refactor - Update to 14.2.12-436-g6feab505b7: + Upstream 14.2.12 relea...
SUSE-SU-2020:3459-1 Security update for ceph
This update for ceph fixes the following issues: - CVE-2020-25660: Bring back CEPHXV2 authorizer challenges bsc1177843. - Major batch refactor of ceph-volume that addresses a couple of issues bsc1151612, bsc1158257 - Documented Prometheus' security model bsc1169134 - monclient: Fixed an issue whe...