OPENSUSE-SU-2020:2327-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2020-27781
Published: 25 Dec 2020, 13:23
Last modified:04 Feb 2026, 02:53

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

25 Dec 2020, 13:23
Published
Vulnerability first disclosed
04 Feb 2026, 02:53
Last Modified
Vulnerability information updated

Description

Security update for ceph This update for ceph fixes the following issues: Security issue fixed: - CVE-2020-27781: Fixed a privilege escalation via the ceph_volume_client Python interface (bsc#1180155, bsc#1179802). Non-security issues fixed: - Update to 15.2.8-80-g1f4b6229ca: + Rebase on tip of upstream 'octopus' branch, SHA1 bdf3eebcd22d7d0b3dd4d5501bee5bac354d5b55 * upstream Octopus v15.2.8 release, see https://ceph.io/releases/v15-2-8-octopus-released/ - Update to 15.2.7-776-g343cd10fe5: + Rebase on tip of upstream 'octopus' branch, SHA1 1b8a634fdcd94dfb3ba650793fb1b6d09af65e05 * (bsc#1178860) mgr/dashboard: Disable TLS 1.0 and 1.1 + (bsc#1179016) rpm: require smartmontools on SUSE + (bsc#1180107) ceph-volume: pass --filter-for-batch from drive-group subcommand This update was imported from the SUSE:SLE-15-SP2:Update update project.

Affected Systems

  • opensuseceph-test&distro=openSUSE Leap 15.2

    < 15.2.8.80+g1f4b6229ca-lp152.2.9.1

  • opensuseceph&distro=openSUSE Leap 15.2

    < 15.2.8.80+g1f4b6229ca-lp152.2.9.1

References (7)