Ceph could be made to run programs as an administrator.
Software Description:
- ceph: distributed storage and file system
Details:
It was discovered that Ceph incorrectly handled crash dumps. A local
attacker could possibly use this issue to escalate privileges to root.
The problem can be corrected by updating your system to the following package versions: Ubuntu 23.04: ceph 17.2.6-0ubuntu0.23.04.2 ceph-base 17.2.6-0ubuntu0.23.04.2 ceph-common 17.2.6-0ubuntu0.23.04.2 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-6292-1
CVE-2022-3650
Get the latest Linux and open source security news straight to your inbox.