RedHat: RHSA-2019-4357:01 Moderate: Red Hat Ceph Storage security update

    Date 19 Dec 2019
    534
    Posted By LinuxSecurity Advisories
    An update is now available for Red Hat Ceph Storage 3.3 that runs on Ubuntu 16.04. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256
    
    =====================================================================
                       Red Hat Security Advisory
    
    Synopsis:          Moderate: Red Hat Ceph Storage security update
    Advisory ID:       RHSA-2019:4357-01
    Product:           Red Hat Ceph Storage
    Advisory URL:      https://access.redhat.com/errata/RHSA-2019:4357
    Issue date:        2019-12-19
    CVE Names:         CVE-2019-19337 
    =====================================================================
    
    1. Summary:
    
    An update is now available for Red Hat Ceph Storage 3.3 that runs on Ubuntu
    16.04.
    
    Red Hat Product Security has rated this update as having a security impact
    of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
    gives a detailed severity rating, is available for each vulnerability from
    the CVE link(s) in the References section.
    
    2. Description:
    
    Red Hat Ceph Storage is a scalable, open, software-defined storage platform
    that combines the most stable version of the Ceph storage system with a
    Ceph management platform, deployment utilities, and support services.
    
    Security Fix(es):
    
    * ceph: denial of service in RGW daemon (CVE-2019-19337)
    
    For more details about the security issue(s), including the impact, a CVSS
    score, acknowledgments, and other related information, refer to the CVE
    page(s) listed in the References section.
    
    3. Solution:
    
    For details on how to apply this update, which includes the changes
    described in this advisory, refer to:
    
    https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/3/html-s
    ingle/installation_guide_for_ubuntu/index#upgrading-the-storage-cluster
    
    4. Bugs fixed (https://bugzilla.redhat.com/):
    
    1781170 - CVE-2019-19337 ceph: denial of service in RGW daemon
    
    5. References:
    
    https://access.redhat.com/security/cve/CVE-2019-19337
    https://access.redhat.com/security/updates/classification/#moderate
    
    6. Contact:
    
    The Red Hat security contact is . More contact
    details at https://access.redhat.com/security/team/contact/
    
    Copyright 2019 Red Hat, Inc.
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1
    
    iQIVAwUBXfvBONzjgjWX9erEAQgVzA/+JoQ381CyFhQW0oHz6gzO4n0lkXKMz13Y
    3cuVyupL67GmTWE3Cs60KGDXZVDJC/1LhfBhZlVN2NQXxnhYsVanDqEIvdAtvF1j
    DwaJA3AIaIaMTrWQ0zcyXZ940kIYtRiOt9GX59gQq7d7rjvVVUWk5m3zYBPbH21f
    +MZOb4SqxB5hVYrl6LjhSBcpiML1rEnS5UUgRx3leZgAwmYMscXrVhlEmhBhM5fW
    kkr6Qe3u6ihmTDnb5v6MgD3JJDWiw9AEWwzvsLg5y73qa1iX5L5svfO8N0Dy9dkF
    /jrps/iWdepc2DCu3JMfxRsG0wH6PGWHTI0qvL2bQ8XIJGsG2Xs7yN2LQpJ5p2T7
    1pjfECDRKjn2fRKlQp2zDWHstaJtnQdwIWzoR1u8jkxcNnGmz0ZEZy9fzyRonySG
    pmfQswjKanY0S3UbssyrnWMq9WRnUjyN5v3o8OxHk2S4eoSF/BtNc/4Aw2Oj4RXt
    owfCGiU+YouSzpO2AAcJzH/0FljHF6zabRlYqRNXzWwua1L0m3TTf7sz8fuNYPfw
    CU74azdZ3tkYvOkyThDUy7bsIp30+gTG6LsgZYumuSZhgYvThFwHDPt4kX1AwSLB
    F6Kvfhwq9nqDrjOOC8pK3394d/lDFh9yDvnINZiH+sBFj9b+5L/R8Ah7tqJ/U2/m
    dvy3R15S0pM=
    =E3ko
    -----END PGP SIGNATURE-----
    
    --
    RHSA-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://www.redhat.com/mailman/listinfo/rhsa-announce
    

    LinuxSecurity Poll

    Are you planning to use the 1Password password manager now that it is available to Linux users?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/35-are-you-planning-to-use-the-1password-password-manager-now-that-it-is-available-to-linux-users?task=poll.vote&format=json
    35
    radio
    [{"id":"122","title":"Yes","votes":"1","type":"x","order":"1","pct":20,"resources":[]},{"id":"123","title":"No ","votes":"3","type":"x","order":"2","pct":60,"resources":[]},{"id":"124","title":"Not sure at the moment","votes":"1","type":"x","order":"3","pct":20,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
    bottom 200

    Advisories

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.