Описание
Security update for ceph
This update for ceph fixes the following issues:
Security issue fixed:
- CVE-2019-10222: Fixed RGW crash via unauthenticated clients (bsc#1145093).
Список пакетов
Container caasp/v4/hyperkube:v1.17.17
ceph-common-14.2.2.349+g6716a1e448-3.9.1
libcephfs2-14.2.2.349+g6716a1e448-3.9.1
librados2-14.2.2.349+g6716a1e448-3.9.1
librbd1-14.2.2.349+g6716a1e448-3.9.1
librgw2-14.2.2.349+g6716a1e448-3.9.1
python3-ceph-argparse-14.2.2.349+g6716a1e448-3.9.1
python3-cephfs-14.2.2.349+g6716a1e448-3.9.1
python3-rados-14.2.2.349+g6716a1e448-3.9.1
python3-rbd-14.2.2.349+g6716a1e448-3.9.1
python3-rgw-14.2.2.349+g6716a1e448-3.9.1
SUSE Enterprise Storage 6
ceph-14.2.2.349+g6716a1e448-3.9.1
ceph-base-14.2.2.349+g6716a1e448-3.9.1
ceph-common-14.2.2.349+g6716a1e448-3.9.1
ceph-fuse-14.2.2.349+g6716a1e448-3.9.1
ceph-grafana-dashboards-14.2.2.349+g6716a1e448-3.9.1
ceph-mds-14.2.2.349+g6716a1e448-3.9.1
ceph-mgr-14.2.2.349+g6716a1e448-3.9.1
ceph-mgr-dashboard-14.2.2.349+g6716a1e448-3.9.1
ceph-mgr-diskprediction-local-14.2.2.349+g6716a1e448-3.9.1
ceph-mgr-rook-14.2.2.349+g6716a1e448-3.9.1
ceph-mon-14.2.2.349+g6716a1e448-3.9.1
ceph-osd-14.2.2.349+g6716a1e448-3.9.1
ceph-prometheus-alerts-14.2.2.349+g6716a1e448-3.9.1
ceph-radosgw-14.2.2.349+g6716a1e448-3.9.1
cephfs-shell-14.2.2.349+g6716a1e448-3.9.1
libcephfs2-14.2.2.349+g6716a1e448-3.9.1
librados2-14.2.2.349+g6716a1e448-3.9.1
librbd1-14.2.2.349+g6716a1e448-3.9.1
librgw2-14.2.2.349+g6716a1e448-3.9.1
python3-ceph-argparse-14.2.2.349+g6716a1e448-3.9.1
python3-cephfs-14.2.2.349+g6716a1e448-3.9.1
python3-rados-14.2.2.349+g6716a1e448-3.9.1
python3-rbd-14.2.2.349+g6716a1e448-3.9.1
python3-rgw-14.2.2.349+g6716a1e448-3.9.1
rbd-fuse-14.2.2.349+g6716a1e448-3.9.1
rbd-mirror-14.2.2.349+g6716a1e448-3.9.1
rbd-nbd-14.2.2.349+g6716a1e448-3.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
ceph-common-14.2.2.349+g6716a1e448-3.9.1
libcephfs-devel-14.2.2.349+g6716a1e448-3.9.1
libcephfs2-14.2.2.349+g6716a1e448-3.9.1
librados-devel-14.2.2.349+g6716a1e448-3.9.1
librados2-14.2.2.349+g6716a1e448-3.9.1
libradospp-devel-14.2.2.349+g6716a1e448-3.9.1
librbd-devel-14.2.2.349+g6716a1e448-3.9.1
librbd1-14.2.2.349+g6716a1e448-3.9.1
librgw-devel-14.2.2.349+g6716a1e448-3.9.1
librgw2-14.2.2.349+g6716a1e448-3.9.1
python3-ceph-argparse-14.2.2.349+g6716a1e448-3.9.1
python3-cephfs-14.2.2.349+g6716a1e448-3.9.1
python3-rados-14.2.2.349+g6716a1e448-3.9.1
python3-rbd-14.2.2.349+g6716a1e448-3.9.1
python3-rgw-14.2.2.349+g6716a1e448-3.9.1
rados-objclass-devel-14.2.2.349+g6716a1e448-3.9.1
Ссылки
- Link for SUSE-SU-2019:2247-1
- E-Mail link for SUSE-SU-2019:2247-1
- SUSE Security Ratings
- SUSE Bug 1145093
- SUSE CVE CVE-2019-10222 page
Описание
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denial of service for Ceph RGW clients.
Затронутые продукты
Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.2.349+g6716a1e448-3.9.1
Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.2.349+g6716a1e448-3.9.1
Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.2.349+g6716a1e448-3.9.1
Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.2.349+g6716a1e448-3.9.1
Ссылки
- CVE-2019-10222
- SUSE Bug 1139399
- SUSE Bug 1145093