SUSE-SU-2019:2049-1
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 05 Aug 2019, 15:56
Last modified:04 Feb 2026, 04:38
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
05 Aug 2019, 15:56
Published
Vulnerability first disclosed
04 Feb 2026, 04:38
Last Modified
Vulnerability information updated
Description
Security update for ceph This update for ceph fixes the following issues: Security issues fixed: - CVE-2019-3821: civetweb: fix file descriptor leak (bsc#1125080) - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth (bsc#1121567) Non-security issues fixed: - install grafana dashboards world readable (bsc#1136110) - upgrade results in cluster outage (bsc#1132396) - ceph status reports 'HEALTH_WARN 3 monitors have not enabled msgr2' (bsc#1124957) - Dashboard: Opening tcmu-runner perf counters results in a 404 (bsc#1135388) - RadosGW stopped expiring objects (bsc#1133139) - Ceph does not recover when rebuilding every OSD (bsc#1133461)
Affected Systems
- suse•ceph&distro=SUSE Enterprise Storage 6
< 14.2.1.468+g994fd9e0cc-3.3.2
- suse•ceph&distro=SUSE Linux Enterprise Module for Basesystem 15 SP1
< 14.2.1.468+g994fd9e0cc-3.3.2
References (17)
- https://www.suse.com/support/update/announcement/2019/suse-su-20192049-1/
- https://bugzilla.suse.com/1121567
- https://bugzilla.suse.com/1123360
- https://bugzilla.suse.com/1124957
- https://bugzilla.suse.com/1125080
- https://bugzilla.suse.com/1125899
- https://bugzilla.suse.com/1131984
- https://bugzilla.suse.com/1132396
- https://bugzilla.suse.com/1133139
- https://bugzilla.suse.com/1133461
- https://bugzilla.suse.com/1135030
- https://bugzilla.suse.com/1135219
- https://bugzilla.suse.com/1135221
- https://bugzilla.suse.com/1135388
- https://bugzilla.suse.com/1136110
- https://www.suse.com/security/cve/CVE-2018-16889
- https://www.suse.com/security/cve/CVE-2019-3821