39 matches found
EUVD-2015-0003
Malware in sbrugna...
EUVD-2015-0002
Malware in sbrugna...
RHSA-2015:1092 Red Hat Security Advisory: ceph-deploy security update
Bulletin has no description...
OPENSUSE-SU-2024:10213-1 ceph-deploy-1.5.34+git.1470736983.963ba71-1.1 on GA media
These are all security issues fixed in the ceph-deploy-1.5.34+git.1470736983.963ba71-1.1 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2015-3010
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
SUSE CVE-2015-4053
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
ceph-deploy uses world-readable permissions on client.admin key
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
GHSA-79JF-CCM8-43W7 ceph-deploy uses world-readable permissions on client.admin key
The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
GHSA-9W4F-3V37-6F75 ceph-deploy allows local users to obtain sensitive information by reading the file
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
ceph-deploy allows local users to obtain sensitive information by reading the file
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
SUSE-SU-2017:0758-1 Security update for ceph
This update provides Ceph 10.2.5, which brings fixes and enhancements: This security issue was fixed: - CVE-2016-8626: Handle empty POST condition to not allow attackers to crash the ceph-radosgw service. bsc1007217 These non-security issues were fixed: - OSD daemon uses 100% CPU load after OSD...
ceph-deploy: keyring permissions are world readable in ~ceph
It was discovered that ceph-deploy, a utility for deploying Red Hat Ceph Storage, would create the keyring file with world readable permissions, which could possibly allow a local user to obtain authentication credentials from the keyring file...
Moderate: Red Hat Security Advisory: ceph-deploy security update
An updated ceph-deploy package that fixes two security issues is now available in Red Hat Ceph Storage 1.2 for CentOS 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
Moderate: Red Hat Security Advisory: ceph-deploy security update
An updated ceph-deploy package that fixes two security issues is now available in Red Hat Ceph Storage for Ubuntu 12.04 and Ubuntu 14.04. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
ceph-deploy: keyring permissions are world readable in ~ceph
It was discovered that ceph-deploy, a utility for deploying Red Hat Ceph Storage, would create the keyring file with world readable permissions, which could possibly allow a local user to obtain authentication credentials from the keyring file...
Fedora Update for ceph-deploy FEDORA-2015-5953
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ceph-deploy weak privilege vulnerability
ceph-deploy is a set of tools for deploying clustered storage systems. ceph-deploy fails to securely create ceph/ceph.client.admin.keyring file permissions, allowing a local attacker to read the file for sensitive information...
CVE-2015-3010
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
CVE-2015-3010
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...
Design/Logic Flaw
ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...