SUSE-SU-2019:0586-1 -- SLES ceph, libcephfs-devel, libcephfs2, librados-devel, librados2, libradosstriper-devel, libradosstriper1, librbd-devel, librbd1, librgw-devel, librgw2, python3-cephfs, python3-rados, python3-rbd, python3-rgw, rados-objclass-develID: oval:org.secpod.oval:def:89050759 | Date: (C)2023-10-16 (M)2023-10-15 |
Class: PATCH | Family: unix |
This update for ceph version 13.2.4 fixes the following issues: Security issues fixed: - CVE-2018-14662: Fixed an issue with LUKS "config-key" safety - CVE-2018-10861: Fixed an authorization bypass on OSD pool ops in ceph-mon - CVE-2018-1128: Fixed signature check bypass in cephx - CVE-2018-1129: Fixed replay attack in cephx protocol - CVE-2018-16846: Enforced bounds on max-keys/max-uploads/max-parts in rgw Non-security issues fixed: - ceph-volume Python 3 fixes - fix python3 module loading
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Desktop 15 |
Product: |
ceph |
libcephfs-devel |
libcephfs2 |
librados-devel |
librados2 |
libradosstriper-devel |
libradosstriper1 |
librbd-devel |
librbd1 |
librgw-devel |
librgw2 |
python3-cephfs |
python3-rados |
python3-rbd |
python3-rgw |
rados-objclass-devel |