MGASA-2021-0223 - Updated ceph packages fix a security vulnerability

Publication date: 27 May 2021
URL: https://advisories.mageia.org/MGASA-2021-0223.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2021-3524

Updated ceph packages fix security vulnerability on rgw CVE-2021-3524 (as well as CVE-2021-3509 and CVE-2021-3531 from which Mageia was not affected).

References:
- https://bugs.mageia.org/show_bug.cgi?id=28928
- https://docs.ceph.com/en/latest/security/CVE-2021-3524/
- https://www.openwall.com/lists/oss-security/2021/05/14/4
- https://www.openwall.com/lists/oss-security/2021/05/14/5
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3524

SRPMS:
- 8/core/ceph-15.2.12-1.mga8