SUSE-SU-2017:3171-1
Vulnerability Summary
Timeline
Description
Security update for ceph This update provides Ceph 10.2.10, which brings fixes and enhancements: This security issue was fixed: - CVE-2017-7519: libradosstriper processes arbitrary printf placeholders in user input. (bsc#1043767) - CVE-2016-9579: Do not abort RGW server when accepting a CORS request with short origin. (bsc#1014986) These non-security issues were fixed: - common: Add rdbmap to ceph-common. (bsc#1029482) - tools/rados: Default to include clone objects when executing 'cache-flush-evict-all'. (bsc#1003891) - mon, ceph-disk: Add lockbox permissions to bootstrap-osd. (bsc#1008435) - ceph_volume_client: Fix _recover_auth_meta() method. (bsc#1008501) - systemd/ceph-disk: Reduce ceph-disk flock contention. (bsc#1012100) - doc: Add verbiage to rbdmap manpage. (bsc#1015748) - doc: Add Install section to systemd rbdmap.service file. (bsc#1015748) - ceph systemd dependencies are wrong (bsc#1042973) - ceph-disk omits '--runtime' when enabling ceph-osd units (was: ERROR: unable to open OSD superblock) (bsc#1051598) - SES4: 23 osd's are down after patching node. (bsc#1056536) - Invalid error code returned by MDS is causing a kernel client WARNING (bsc#1028109) - systemctl stop rbdmap unmaps ALL rbds and not just the ones in /etc/ceph/rbdmap (bsc#1024691) - documentation: man crushtool does not cover the '--show-mappings' parameter (bsc#1033786) - swift | This returns with HTTP/1.1 401 Unauthorized (bsc#1015371) - OSDs fail to start after server reboot (bsc#1025643) - 'ceph-deploy mds destroy' not implemented (bsc#970642)
Affected Systems
- suse•ceph-test&distro=SUSE Enterprise Storage 3
< 10.2.10+git.1510313171.6d5f0aeac1-13.7.2
- suse•ceph&distro=SUSE Enterprise Storage 3
< 10.2.10+git.1510313171.6d5f0aeac1-13.7.3
References (20)
- https://www.suse.com/support/update/announcement/2017/suse-su-20173171-1/
- https://bugzilla.suse.com/1003891
- https://bugzilla.suse.com/1008435
- https://bugzilla.suse.com/1008501
- https://bugzilla.suse.com/1012100
- https://bugzilla.suse.com/1014986
- https://bugzilla.suse.com/1015371
- https://bugzilla.suse.com/1015748
- https://bugzilla.suse.com/1024691
- https://bugzilla.suse.com/1025643
- https://bugzilla.suse.com/1028109
- https://bugzilla.suse.com/1029482
- https://bugzilla.suse.com/1033786
- https://bugzilla.suse.com/1042973
- https://bugzilla.suse.com/1043767
- https://bugzilla.suse.com/1051598
- https://bugzilla.suse.com/1056536
- https://bugzilla.suse.com/970642
- https://www.suse.com/security/cve/CVE-2016-9579
- https://www.suse.com/security/cve/CVE-2017-7519