RHSA-2021:1518

Description

Red Hat Security Advisory: Red Hat Ceph Storage 3.3 Security and Bug Fix Update

CVSS Metrics

• v3.1•HIGH•Score: 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected Systems

• redhat•ceph

  < 2:12.2.12-139.el7cp

• redhat•ceph-ansible

  < 0:3.2.56-1.el7cp

• redhat•ceph-base

  < 2:12.2.12-139.el7cp

• redhat•ceph-common

  < 2:12.2.12-139.el7cp

• redhat•ceph-debuginfo

  < 2:12.2.12-139.el7cp

• redhat•ceph-fuse

  < 2:12.2.12-139.el7cp

• redhat•ceph-mds

  < 2:12.2.12-139.el7cp

• redhat•ceph-mgr

  < 2:12.2.12-139.el7cp

• redhat•ceph-mon

  < 2:12.2.12-139.el7cp

• redhat•ceph-osd

  < 2:12.2.12-139.el7cp

• redhat•ceph-radosgw

  < 2:12.2.12-139.el7cp

• redhat•ceph-selinux

  < 2:12.2.12-139.el7cp

• redhat•ceph-test

  < 2:12.2.12-139.el7cp

• redhat•cephmetrics

  < 0:2.0.10-1.el7cp

• redhat•cephmetrics-ansible

  < 0:2.0.10-1.el7cp

• redhat•grafana

  < 0:5.2.4-3.el7cp

• redhat•libcephfs-devel

  < 2:12.2.12-139.el7cp

• redhat•libcephfs2

  < 2:12.2.12-139.el7cp

• redhat•librados-devel

  < 2:12.2.12-139.el7cp

• redhat•librados2

  < 2:12.2.12-139.el7cp

• redhat•libradosstriper1

  < 2:12.2.12-139.el7cp

• redhat•librbd-devel

  < 2:12.2.12-139.el7cp

• redhat•librbd1

  < 2:12.2.12-139.el7cp

• redhat•librgw-devel

  < 2:12.2.12-139.el7cp

• redhat•librgw2

  < 2:12.2.12-139.el7cp

• redhat•python-cephfs

  < 2:12.2.12-139.el7cp

• redhat•python-rados

  < 2:12.2.12-139.el7cp

• redhat•python-rbd

  < 2:12.2.12-139.el7cp

• redhat•python-rgw

  < 2:12.2.12-139.el7cp

• redhat•rbd-mirror

  < 2:12.2.12-139.el7cp

• redhat•tcmu-runner

  < 0:1.4.0-3.el7cp

• redhat•tcmu-runner-debuginfo

  < 0:1.4.0-3.el7cp

References (41)

• https://access.redhat.com/errata/RHSA-2021:1518
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=1650209
• https://bugzilla.redhat.com/show_bug.cgi?id=1652233
• https://bugzilla.redhat.com/show_bug.cgi?id=1827262
• https://bugzilla.redhat.com/show_bug.cgi?id=1829821
• https://bugzilla.redhat.com/show_bug.cgi?id=1830329
• https://bugzilla.redhat.com/show_bug.cgi?id=1832372
• https://bugzilla.redhat.com/show_bug.cgi?id=1842390
• https://bugzilla.redhat.com/show_bug.cgi?id=1843640
• https://bugzilla.redhat.com/show_bug.cgi?id=1871035
• https://bugzilla.redhat.com/show_bug.cgi?id=1876551
• https://bugzilla.redhat.com/show_bug.cgi?id=1882724
• https://bugzilla.redhat.com/show_bug.cgi?id=1887661
• https://bugzilla.redhat.com/show_bug.cgi?id=1894426
• https://bugzilla.redhat.com/show_bug.cgi?id=1896392
• https://bugzilla.redhat.com/show_bug.cgi?id=1896448
• https://bugzilla.redhat.com/show_bug.cgi?id=1900109
• https://bugzilla.redhat.com/show_bug.cgi?id=1901897
• https://bugzilla.redhat.com/show_bug.cgi?id=1906293
• https://bugzilla.redhat.com/show_bug.cgi?id=1915070
• https://bugzilla.redhat.com/show_bug.cgi?id=1915078
• https://bugzilla.redhat.com/show_bug.cgi?id=1916045
• https://bugzilla.redhat.com/show_bug.cgi?id=1947072
• https://bugzilla.redhat.com/show_bug.cgi?id=1948050
• https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1518.json
• https://access.redhat.com/security/cve/CVE-2020-12059
• https://www.cve.org/CVERecord?id=CVE-2020-12059
• https://nvd.nist.gov/vuln/detail/CVE-2020-12059
• https://ceph.io/releases/v13-2-10-mimic-released/
• https://access.redhat.com/security/cve/CVE-2020-13379
• https://www.cve.org/CVERecord?id=CVE-2020-13379
• https://nvd.nist.gov/vuln/detail/CVE-2020-13379
• https://grafana.com/blog/2020/06/03/grafana-6.7.4-and-7.0.2-released-with-important-security-fix/
• https://www.openwall.com/lists/oss-security/2020/06/09/2/
• https://access.redhat.com/security/cve/CVE-2020-27781
• https://www.cve.org/CVERecord?id=CVE-2020-27781
• https://nvd.nist.gov/vuln/detail/CVE-2020-27781
• https://access.redhat.com/security/cve/CVE-2021-3139
• https://www.cve.org/CVERecord?id=CVE-2021-3139
• https://nvd.nist.gov/vuln/detail/CVE-2021-3139