Security update for ceph (moderate)

An update that solves two vulnerabilities and has 12 fixes
is now available.

Description:

This update for ceph fixes the following issues:

• ceph was updated to to 15.2.9
• cephadm: fix ‘inspect’ and ‘pull’ (bsc#1182766)
• CVE-2020-27839: mgr/dashboard: Use secure cookies to store JWT Token
  (bsc#1179997)
• CVE-2020-25678: Do not add sensitive information in Ceph log files
  (bsc#1178905)
• mgr/orchestrator: Sort ‘ceph orch device ls’ by host (bsc#1172926)
• mgr/dashboard: enable different URL for users of browser to Grafana
  (bsc#1176390, bsc#1176679)
• mgr/cephadm: lock multithreaded access to OSDRemovalQueue (bsc#1176489)
• cephadm: command_unit: call systemctl with verbose=True (bsc#1176828)
• cephadm: silence “Failed to evict container” log msg (bsc#1177360)
• mgr/cephadm: upgrade: fail gracefully, if daemon redeploy fails
  (bsc#1177857)
• rgw: cls/user: set from_index for reset stats calls (bsc#1178837)
• mgr/dashboard: Disable TLS 1.0 and 1.1 (bsc#1178860)
• cephadm: reference the last local image by digest (bsc#1178932,
  bsc#1179569)

This update was imported from the SUSE:SLE-15-SP2:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

• openSUSE Leap 15.2:

  zypper in -t patch openSUSE-2021-544=1