OVAL Reference oval:org.opensuse.security:def:126040

Oval Definition:

oval:org.opensuse.security:def:126040

Revision Date:	2019-02-26	Version:	1
Title:	Security update for ceph (Important)
Description:	This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-14662: mon: limit caps allowed to access the config store (bsc#1111177) - CVE-2018-16846: rgw: enforce bounds on max-keys/max-uploads/max-parts (bsc#1114710) - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth (bsc#1121567) Non-security issue fixed: - os/bluestore: avoid frequent allocator dump on bluefs rebalance failure (bsc#1113246)
Family:	unix	Class:	patch
Status:		Reference(s):	1111177 1113246 1114710 1121567 CVE-2018-14662 CVE-2018-16846 CVE-2018-16889 SUSE-SU-2019:0499-1
Platform(s):	SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information libcephfs-devel-12.2.10+git.1549630712.bb089269ea-2.27.2 is installed OR librados-devel-12.2.10+git.1549630712.bb089269ea-2.27.2 is installed OR librbd-devel-12.2.10+git.1549630712.bb089269ea-2.27.2 is installed