Explore top 10 tips to secure your open-source projects now. Read More
×
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
Red Hat Ceph Storage is a scalable, open, software-defined storage platform
that combines the most stable version of the Ceph storage system with a
Ceph management platform, deployment utilities, and support services.
The ceph-ansible package provides Ansible playbooks for installing,
maintaining, and upgrading Red Hat Ceph Storage.
Perf Tools is a collection of performance analysis tools, including a
high-performance multi-threaded malloc() implementation that works
particularly well with threads and STL, a thread-friendly heap-checker, a
heap profiler, and a cpu-profiler.
The libunwind packages contain a C API to determine the call chain of a
program. This API is necessary for compatibility with Google Performance
Tools (gperftools).
nfs-ganesha : NFS-GANESHA is a NFS Server running in user space. It comes
with various back-end modules (called FSALs) provided as shared objects to
support different file systems and name-spaces.
The following packages have been upgraded to a later upstream version: ceph
(16.2.8), ceph-ansible (6.0.27.9), cephadm-ansible (1.8.0), gperftools
(2.9.1), leveldb (1.23), libunwind (1.5.0), nfs-ganesha (3.5), oath-toolkit
(2.6.7). (BZ#1623330, BZ#1942171, BZ#1977888, BZ#1997480, BZ#1997996,
BZ#2006214, BZ#2006771, BZ#2013215, BZ#2018906, BZ#2024720, BZ#2028628,
BZ#2029307, BZ#2030540, BZ#2039669, BZ#2041563, BZ#2041571, BZ#2042417,
BZ#2042602, BZ#2043602, BZ#2047487, BZ#2048681, BZ#2049272, BZ#2053468,
BZ#2053591, BZ#2055173, BZ#2057307, BZ#2060278, BZ#2064627, BZ#2077843,
BZ#2080242)
Security Fix(es):
* ceph: user/tenant can obtain access (read/write) to any share
(CVE-2022-0670)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Additional Changes:
This update also fixes several bugs and adds various enhancements.
Documentation for these changes is available from the Release Notes
document linked to in the References section.
https://access.redhat.com/security/cve/CVE-2022-0670 https://access.redhat.com/security/updates/classification/#moderate
Red Hat Ceph Storage 5.2 MON:
Source:
ceph-16.2.8-84.el8cp.src.rpm
noarch:
ceph-grafana-dashboards-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-cephadm-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-dashboard-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-diskprediction-local-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-k8sevents-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-modules-core-16.2.8-84.el8cp.noarch.rpm
ceph-mgr-rook-16.2.8-84.el8cp.noarch.rpm
ceph-prometheus-alerts-16.2.8-84.el8cp.noarch.rpm
cephadm-16.2.8-84.el8cp.noarch.rpm
ppc64le:
ceph-base-16.2.8-84.el8cp.ppc64le.rpm
ceph-base-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-common-16.2.8-84.el8cp.ppc64le.rpm
ceph-common-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-debugsource-16.2.8-84.el8cp.ppc64le.rpm
ceph-fuse-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-immutable-object-cache-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-mds-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-mgr-16.2.8-84.el8cp.ppc64le.rpm
ceph-mgr-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-mon-16.2.8-84.el8cp.ppc64le.rpm
ceph-mon-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-osd-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-radosgw-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
ceph-selinux-16.2.8-84.el8cp.ppc64le.rpm
ceph-test-16.2.8-84.el8cp.ppc64le.rpm
ceph-test-debuginfo-16.2.8-84.el8cp.ppc64le.rpm
Read the Full Advisory
An update is now available for Red Hat Ceph Storage 5.2.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.
Red Hat Ceph Storage 5.2 MON - noarch, ppc64le, s390x, x86_64
Red Hat Ceph Storage 5.2 OSD - ppc64le, s390x, x86_64
Red Hat Ceph Storage 5.2 Tools - noarch, ppc64le, s390x, x86_64
1623330 - [GSS]ceph.dir.layout layout xattr does not exist for subdirs on non default pool
1889976 - [5.0] Ceph-Dashboard: Delete Host via dashboard UI is successful but host lists still shows the entry
1901857 - [RFE] Implement (OpenStack/Keystone) Secure RBAC within RGW
1910419 - [RFE][RGW] Allow rgw's ops log to be sent to a log file
1910503 - [GSS] radosgw-admin bi purge returning ERROR: could not init current bucket info for a deleted bucket
1938670 - [CephFS-NFS] remove misleading stdout messages when creating or deleting NFS cluster
1939716 - (RFE) (RGW) more control functionality for RGW lifecycle process
1942171 - [GSS][Mon][Health-Check] mon_pg_warn_max_object_skew needs lower bound implemented
1962511 - [cephadm] devices with GPT header : Available devices fail to become OSDs
1962575 - [RGW]: Post manual reshard, LC not processing on versioned bucket
1966180 - Cephadm needs to support RHEL 9
1966608 - [cephadm] incorrect information about usage of ceph orch osd rm
1967901 - [RGW]: Crash on MS secondary when sync resumes post error
1971694 - dashboard: HEALTH_ERR with OSDs full and nearfull but no (easy) way to guess which ones are
1972506 - [RGW][LC]: Error message "lifecycle: ERROR: remove_expired_obj" recieved on doing radosgw-admin lc process.
1976128 - Unable to create max luns(255) per target and containers are being crashed after some disks added to client
1977888 - ceph-volume fails to get an inventory list
Get the latest Linux and open source security news straight to your inbox.