OPENSUSE-SU-2020:2082-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2020-25660
Published: 27 Nov 2020, 13:25
Last modified:04 Feb 2026, 03:33

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

27 Nov 2020, 13:25
Published
Vulnerability first disclosed
04 Feb 2026, 03:33
Last Modified
Vulnerability information updated

Description

Security update for ceph This update for ceph fixes the following issues: - CVE-2020-25660: Bring back CEPHX_V2 authorizer challenges (bsc#1177843). - Added --container-init feature (bsc#1177319, bsc#1163764) - Made journald as the logdriver again (bsc#1177933) - Fixes a condition check for copy_tree, copy_files, and move_files in cephadm (bsc#1177676) - Fixed a bug where device_health_metrics pool gets created even without any OSDs in the cluster (bsc#1173079) - Log cephadm output /var/log/ceph/cephadm.log (bsc#1174644) - Fixed a bug where the orchestrator didn't come up anymore after the deletion of OSDs (bsc#1176499) - Fixed a bug where cephadm fails to deploy all OSDs and gets stuck (bsc#1177450) - python-common will no longer skip unavailable disks (bsc#1177151) - Added snap-schedule module (jsc#SES-704) - Updated the SES7 downstream branding (bsc#1175120, bsc#1175161, bsc#1175169, bsc#1170498) This update was imported from the SUSE:SLE-15-SP2:Update update project.

Affected Systems

  • opensuseceph-test&distro=openSUSE Leap 15.2

    < 15.2.5.667+g1a579d5bf2-lp152.2.3.1

  • opensuseceph&distro=openSUSE Leap 15.2

    < 15.2.5.667+g1a579d5bf2-lp152.2.3.1

References (26)