4 matches found
Important: Red Hat Security Advisory: Red Hat Ceph Storage 4.2 Security and Bug Fix update
An update is now available for Red Hat Ceph Storage 4.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links i...
RHEL 7 / 8 : Red Hat Ceph Storage 4.2 Security and Bug Fix update (Important) (RHSA-2021:0081)
The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0081 advisory. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage...
CVE-2020-25677
A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph/iscsi-gateway.conf with insecure default permissions. This flaw allows any user on the system to read sensitive information within this file. The highest threat from this vulnerability is to confidentiality...
CVE-2020-25677
CVE-2020-25677 affects Ceph-ansible v4.0.41, where /etc/ceph/iscsi-gateway.conf is created with insecure default permissions, allowing any local user to read sensitive information. The issue is tied to insecure ownership/permissions of the iscsi-gateway.conf file (cited in Red Hat’s RHSA-2021:008...