SUSE-SU-2017:1479-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2016-9579
Published: 02 Jun 2017, 13:03
Last modified:02 May 2025, 04:05

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

02 Jun 2017, 13:03
Published
Vulnerability first disclosed
02 May 2025, 04:05
Last Modified
Vulnerability information updated

Description

Security update for ceph This update provides Ceph 10.2.6, which brings fixes and enhancements: This security issue was fixed: - CVE-2016-9579: Do not abort RGW server when accepting a CORS request with short origin. (bsc#1014986) These non-security issues were fixed: - common: Add rdbmap to ceph-common. (bsc#1029482) - tools/rados: Default to include clone objects when executing 'cache-flush-evict-all'. (bsc#1003891) - mon, ceph-disk: Add lockbox permissions to bootstrap-osd. (bsc#1008435) - ceph_volume_client: Fix _recover_auth_meta() method. (bsc#1008501) - systemd/ceph-disk: Reduce ceph-disk flock contention. (bsc#1012100) - doc: Add verbiage to rbdmap manpage. (bsc#1015748) - doc: Add Install section to systemd rbdmap.service file. (bsc#1015748) - doc: Remove references to mds destroy from ceph-deploy man page. (bsc#970642)

Affected Systems

  • suseceph-test&distro=SUSE Enterprise Storage 4

    < 10.2.6+git.1490339825.57146d8-11.7

  • suseceph&distro=SUSE Enterprise Storage 4

    < 10.2.6+git.1490339825.57146d8-11.7

References (10)