Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 510
Alerts This Week
Warning Icon 1 510

SUSE: 2020:3473-1 Moderate: Ceph Security Issue Resolved

suse
Calendar Grey November 21, 2020
Dist Suse Esm H88
SUSE Security Update: Security update for ceph _____________________________________________________
An update that solves one vulnerability, contains two features and has 23 fixes is now available

Summary

This update for ceph fixes the following issues: - CVE-2020-25660: Bring back CEPHX_V2 authorizer challenges (bsc#1177843). - Added --container-init feature (bsc#1177319, bsc#1163764) - Made journald as the logdriver again (bsc#1177933) - Fixes a condition check for copy_tree, copy_files, and move_files in cephadm (bsc#1177676) - Fixed a bug where device_health_metrics pool gets created even without any OSDs in the cluster (bsc#1173079) - Log cephadm output /var/log/ceph/cephadm.log (bsc#1174644) - Fixed a bug where the orchestrator didn't come up anymore after the deletion of OSDs (bsc#1176499) - Fixed a bug where cephadm fails to deploy all OSDs and gets stuck (bsc#1177450) - python-common will no longer skip unavailable disks (bsc#1177151) - Added snap-schedule module (jsc#SES-704)

References

#1163764 #1170200 #1170498 #1173079 #1174466

#1174529 #1174644 #1175120 #1175161 #1175169

#1176451 #1176499 #1176638 #1177078 #1177151

#1177319 #1177344 #1177450 #1177643 #1177676

#1177843 #1177933 #1178073 #1178531 SES-1071

SES-185

Cross- CVE-2020-25660

Affected Products:

SUSE Linux Enterprise Module for Basesystem 15-SP2

https://www.suse.com/security/cve/CVE-2020-25660.html

https://bugzilla.suse.com/1163764

https://bugzilla.suse.com/1170200

https://bugzilla.suse.com/1170498

https://bugzilla.suse.com/1173079

https://bugzilla.suse.com/1174466

https://bugzilla.suse.com/1174529

https://bugzilla.suse.com/1174644

https://bugzilla.suse.com/1175120

https://bugzilla.suse.com/1175161

https://bugzilla.suse.com/1175169

Announcement ID: SUSE-SU-2020:3473-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.