Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

Fedora 27: 2017-97b730736f Critical: Ceph Input Issue in rgw_iam_policy.cc

fedora
Calendar Grey December 12, 2017
Dist Fedora Esm H88
Fedora 27 has received a security patch for Ceph, correcting a serious vulnerability in rgw_iam_policy.cc, as part of the 12.2.2 update.
New release (1:12.2.2-1), security fix for CVE-2017-16818

Summary

Ceph is a massively scalable, open-source, distributed storage system that runs

on commodity hardware and delivers object, block and file system storage.

New release (1:12.2.2-1), security fix for CVE-2017-16818

[ 1 ] Bug #1515872 - CVE-2017-16818 ceph: Failed assertion through user input in ceph_assert() function in rgw_iam_policy.cc

https://bugzilla.redhat.com/show_bug.cgi?id=1515872

su -c 'dnf upgrade ceph' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 12.2.2
Release: 1.fc27
URL: Summary : User space components of the Ceph file system

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.