5 matches found
SUSE: Security Advisory (SUSE-SU-2019:2049-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : ceph (SUSE-SU-2019:2049-1)
This update for ceph fixes the following issues : Security issues fixed : CVE-2019-3821: civetweb: fix file descriptor leak bsc1125080 CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth bsc1121567 Non-security issues fixed: install grafana dashboards world readable...
SUSE-SU-2019:2049-1 Security update for ceph
This update for ceph fixes the following issues: Security issues fixed: - CVE-2019-3821: civetweb: fix file descriptor leak bsc1125080 - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth bsc1121567 Non-security issues fixed: - install grafana dashboards world...
USN-4035-1: Ceph vulnerabilities
It was discovered that Ceph incorrectly handled read only permissions. An authenticated attacker could use this issue to obtain dm-crypt encryption keys. This issue only affected Ubuntu 16.04 LTS. CVE-2018-14662 It was discovered that Ceph incorrectly handled certain OMAPs holding bucket indices...
CVE-2019-3821
CVE-2019-3821 affects the civetweb frontend used by Ceph RGW when SSL is enabled. The issue allows an unauthenticated attacker to open multiple connections to the Ceph RADOS gateway, exhausting file descriptors on ceph-radosgw and causing remote denial of service. The vulnerability is due to cive...