Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -7 articles for you...
100
security advisoryaccess controlSUSE LinuxSUSE Linux 15-SP3: 2021:1474-1 Important: Ceph Data Corruption
An update that solves one vulnerability and has two fixes is now available. . SUSE Security Update: Security update for ceph ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:1474-1 Rating: important References: #1183074 #1183899 #1184231 Cross-References: CVE-2021-20288 CVSS scores: CVE-2021-20288 (NVD) : 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-20288 (SUSE): 8 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 SUSE Enterprise Storage 7 ______________________________________________________________________________ An update that solves one vulnerability and has two fixes is now available. Description: This update for ceph fixes the following issues: - ceph was updated to 15.2.11-83-g8a15f484c2: * CVE-2021-20288: Fixed unauthorized global_id reuse (bsc#1183074). * disk gets replaced with no rocksdb/wal (bsc#1184231). * BlueStore handles huge(> 4GB) writes from RocksDB to BlueFS poorly, potentially causing data corruption (bsc#1183899). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-1474=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-1474=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2021-1474=1 Package List: - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): ceph-common-15.2.11.83+g8a15f484c2-3.20.1 ceph-common-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 ceph-debugsource-15.2.11.83+g8a15f484c2-3.20.1 libcephfs-devel-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librados-devel-15.2.11.83+g8a15f484c2-3.20.1 librados-devel-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librados2-15.2.11.83+g8a15f484c2-3.20.1 librados2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 libradospp-devel-15.2.11.83+g8a15f484c2-3.20.1 librbd-devel-15.2.11.83+g8a15f484c2-3.20.1 librbd1-15.2.11.83+g8a15f484c2-3.20.1 librbd1-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librgw-devel-15.2.11.83+g8a15f484c2-3.20.1 librgw2-15.2.11.83+g8a15f484c2-3.20.1 librgw2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-argparse-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-common-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 rados-objclass-devel-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): ceph-common-15.2.11.83+g8a15f484c2-3.20.1 ceph-common-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 ceph-debugsource-15.2.11.83+g8a15f484c2-3.20.1 libcephfs-devel-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librados-devel-15.2.11.83+g8a15f484c2-3.20.1 librados-devel-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librados2-15.2.11.83+g8a15f484c2-3.20.1 librados2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 libradospp-devel-15.2.11.83+g8a15f484c2-3.20.1 librbd-devel-15.2.11.83+g8a15f484c2-3.20.1 librbd1-15.2.11.83+g8a15f484c2-3.20.1 librbd1-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librgw-devel-15.2.11.83+g8a15f484c2-3.20.1 librgw2-15.2.11.83+g8a15f484c2-3.20.1 librgw2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-argparse-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-common-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 rados-objclass-devel-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): ceph-base-15.2.11.83+g8a15f484c2-3.20.1 ceph-base-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 ceph-common-15.2.11.83+g8a15f484c2-3.20.1 ceph-common-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 ceph-debugsource-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-15.2.11.83+g8a15f484c2-3.20.1 libcephfs2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librados2-15.2.11.83+g8a15f484c2-3.20.1 librados2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librbd1-15.2.11.83+g8a15f484c2-3.20.1 librbd1-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 librgw2-15.2.11.83+g8a15f484c2-3.20.1 librgw2-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-argparse-15.2.11.83+g8a15f484c2-3.20.1 python3-ceph-common-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-15.2.11.83+g8a15f484c2-3.20.1 python3-cephfs-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-15.2.11.83+g8a15f484c2-3.20.1 python3-rados-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-15.2.11.83+g8a15f484c2-3.20.1 python3-rbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-15.2.11.83+g8a15f484c2-3.20.1 python3-rgw-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-15.2.11.83+g8a15f484c2-3.20.1 rbd-nbd-debuginfo-15.2.11.83+g8a15f484c2-3.20.1 - SUSE Enterprise Storage 7 (noarch): cephadm-15.2.11.83+g8a15f484c2-3.20.1 References: https://www.suse.com/security/cve/CVE-2021-20288.html https://bugzilla.suse.com/1183074 https://bugzilla.suse.com/1183899 https://bugzilla.suse.com/1184231 . SUSE has issued a security update for ceph, resolving a critical vulnerability with available patches. Find out more details here.. SUSE Linux, Ceph Security, Data Protection, Ceph Patch, Access Control. . Severity: Important. LinuxSecurity.com Team
May 04, 2021 •Important SuSE 100
security advisorysecurity issueimportantSUSE: 2020:859-1 Important: Ceph Security Update Type - Security
The container ses/7/ceph/ceph was updated. The following patches have been included in this update:. SUSE Container Update Advisory: ses/7/ceph/ceph ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2020:859-1 Container Tags : ses/7/ceph/ceph:15.2.8.80 , ses/7/ceph/ceph:15.2.8.80.4.55 , ses/7/ceph/ceph:latest , ses/7/ceph/ceph:sle15.2.octopus Container Release : 4.55 Severity : important Type : security References : 1084671 1169006 1173513 1174942 1175514 1175623 1177120 1178346 1178554 1178825 1178860 1179016 1179398 1179399 1179452 1179491 1179526 1179593 1180107 1180155 CVE-2020-14145 CVE-2020-1971 CVE-2020-26137 CVE-2020-27781 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 ----------------------------------------------------------------- The container ses/7/ceph/ceph was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2020:3721-1 Released: Wed Dec 9 13:36:46 2020 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1179491,CVE-2020-1971 This update for openssl-1_1 fixes the following issues: - CVE-2020-1971: Fixed a null pointer dereference in EDIPARTYNAME (bsc#1179491). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2020:3723-1 Released: Wed Dec 9 13:37:55 2020 Summary: Security update for python-urllib3 Type: security Severity: moderate References: 1177120,CVE-2020-26137 This update for python-urllib3 fixes the following issues: - CVE-2020-26137: Fixed a CRLF injection via HTTP request method (bsc#1177120). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2020:3735-1 Released: Wed Dec 9 18:19:24 2020 Summary: Security update for curl Type: security Severity: moderate References: 1179398,1179399,1179593,CVE-2020-8284,CVE-2020-8285,CVE-2020-8286 This update for curl fixes the following issues: - CVE-2020-8286: Fixed improper OSCP verification in the client side (bsc#1179593). - CVE-2020-8285: Fixed a stack overflow due to FTP wildcard (bsc#1179399). - CVE-2020-8284: Fixed an issue where a malicius FTP server could make curl connect to a different IP (bsc#1179398). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2020:3736-1 Released: Wed Dec 9 18:19:58 2020 Summary: Security update for openssh Type: security Severity: moderate References: 1173513,CVE-2020-14145 This update for openssh fixes the following issues: - CVE-2020-14145: Fixed a potential information leak during host key exchange (bsc#1173513). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2020:3747-1 Released: Thu Dec 10 13:54:49 2020 Summary: Recommended update for ceph Type: recommended Severity: moderate References: 1179452,1179526 This update for ceph fixes the following issues: - Fixed an issue when reading a large 'RGW' object takes too long and can cause data loss. (bsc#1179526) - Fixed a build issue caused by missing nautilus module named 'six'. (bsc#1179452) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2020:3791-1 Released: Mon Dec 14 17:39:19 2020 Summary: Recommended update for gzip Type: recommended Severity: moderate References: This update for gzip fixes the following issue: - Enable `DFLTCC` (Deflate Conversion Call) compression for s390x for levels 1-6 to `CFLAGS`. (jsc#SLE-13775) Enable by adding `-DDFLTCC_LEVEL_MASK=0x7e` to `CFLAGS`. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2020:3809-1 Released: Tue Dec 15 13:46:05 2020 Summary: Recommended update for glib2 Type: recommended Severity: moderate References: 1178346 This update forglib2 fixes the following issues: Update from version 2.62.5 to version 2.62.6: - Support for slim format of timezone. (bsc#1178346) - Fix DST incorrect end day when using slim format. (bsc#1178346) - Fix SOCKS5 username/password authentication. - Updated translations. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2020:3853-1 Released: Wed Dec 16 12:27:27 2020 Summary: Recommended update for util-linux Type: recommended Severity: moderate References: 1084671,1169006,1174942,1175514,1175623,1178554,1178825 This update for util-linux fixes the following issue: - Do not trigger the automatic close of CDROM. (bsc#1084671) - Try to automatically configure broken serial lines. (bsc#1175514) - Avoid `sulogin` failing on not existing or not functional console devices. (bsc#1175514) - Build with `libudev` support to support non-root users. (bsc#1169006) - Avoid memory errors on PowerPC systems with valid hardware configurations. (bsc#1175623, bsc#1178554, bsc#1178825) - Fix warning on mounts to `CIFS` with mount –a. (bsc#1174942) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2020:3894-1 Released: Mon Dec 21 12:56:05 2020 Summary: Security update for ceph Type: security Severity: important References: 1178860,1179016,1180107,1180155,CVE-2020-27781 This update for ceph fixes the following issues: Security issue fixed: - CVE-2020-27781: Fixed a privilege escalation via the ceph_volume_client Python interface (bsc#1180155). Non-security issues fixed: - Update to 15.2.8-80-g1f4b6229ca: + Rebase on tip of upstream 'octopus' branch, SHA1 bdf3eebcd22d7d0b3dd4d5501bee5bac354d5b55 * upstream Octopus v15.2.8 release, see https://ceph.io/en/news/blog/2020/v15-2-8-octopus-released/ - Update to 15.2.7-776-g343cd10fe5: + Rebase on tip of upstream 'octopus' branch, SHA1 1b8a634fdcd94dfb3ba650793fb1b6d09af65e05 * (bsc#1178860) mgr/dashboard: Disable TLS 1.0 and 1.1 + (bsc#1179016) rpm: requiresmartmontools on SUSE + (bsc#1180107) ceph-volume: pass --filter-for-batch from drive-group subcommand . The latest SUSE security update for ses/7/ceph/ceph fixes critical vulnerabilities and enhances system stability and performance, improving overall security and user experience. SUSE Container Update, Ceph Security Fix, SES/7/Ceph Updates. . Severity: Important. LinuxSecurity.com Team
Dec 23, 2020 •Important SuSE 
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!