SUSE-SU-2019:0586-1 -- SLES ceph, libcephfs-devel, libcephfs2, librados-devel, librados2, libradosstriper-devel, libradosstriper1, librbd-devel, librbd1, librgw-devel, librgw2, python3-cephfs, python3-rados, python3-rbd, python3-rgw, rados-objclass-devel| ID: oval:org.secpod.oval:def:89050759 | Date: (C)2023-10-16 (M)2023-10-15 |
| Class: PATCH | Family: unix |
This update for ceph version 13.2.4 fixes the following issues: Security issues fixed: - CVE-2018-14662: Fixed an issue with LUKS "config-key" safety - CVE-2018-10861: Fixed an authorization bypass on OSD pool ops in ceph-mon - CVE-2018-1128: Fixed signature check bypass in cephx - CVE-2018-1129: Fixed replay attack in cephx protocol - CVE-2018-16846: Enforced bounds on max-keys/max-uploads/max-parts in rgw Non-security issues fixed: - ceph-volume Python 3 fixes - fix python3 module loading
| Platform: |
| SUSE Linux Enterprise Server 15 |
| SUSE Linux Enterprise Desktop 15 |
| Product: |
| ceph |
| libcephfs-devel |
| libcephfs2 |
| librados-devel |
| librados2 |
| libradosstriper-devel |
| libradosstriper1 |
| librbd-devel |
| librbd1 |
| librgw-devel |
| librgw2 |
| python3-cephfs |
| python3-rados |
| python3-rbd |
| python3-rgw |
| rados-objclass-devel |
