Oval Definition:oval:org.opensuse.security:def:20220670
Revision Date:2023-06-22Version:1
Title:CVE-2022-0670
Description:

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-0670
SUSE CVE-2022-0670
SUSE-CU-2023:796-1
SUSE-CU-2023:797-1
SUSE-CU-2023:798-1
SUSE-CU-2023:799-1
SUSE-SU-2023:1580-1
SUSE-SU-2023:1581-1
SUSE-SU-2023:1584-1
SUSE-SU-2023:1581-2
Platform(s):SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Micro 5.2
SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Module for Basesystem 15 SP4
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.3 is installed
  • AND Package Information
  • librados2 is affected
  • OR librbd1 is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.1 is installed
  • AND Package Information
  • librados2 is affected
  • OR librbd1 is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.2 is installed
  • AND Package Information
  • librados2 is affected
  • OR librbd1 is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND Package Information
  • ceph-common is affected
  • OR libcephfs-devel is affected
  • OR libcephfs2 is affected
  • OR librados-devel is affected
  • OR librados2 is affected
  • OR libradospp-devel is affected
  • OR librbd-devel is affected
  • OR librbd1 is affected
  • OR librgw-devel is affected
  • OR librgw2 is affected
  • OR python3-ceph-argparse is affected
  • OR python3-ceph-common is affected
  • OR python3-cephfs is affected
  • OR python3-rados is affected
  • OR python3-rbd is affected
  • OR python3-rgw is affected
  • OR rados-objclass-devel is affected
  • OR rbd-nbd is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND Package Information
  • librados2 is affected
  • OR librbd1 is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND ceph is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • ceph-common is not affected
  • OR libcephfs2 is not affected
  • OR librados2 is not affected
  • OR libradosstriper1 is not affected
  • OR librbd1 is not affected
  • OR librgw2 is not affected
  • OR python-cephfs is not affected
  • OR python-rados is not affected
  • OR python-rbd is not affected
  • OR python-rgw is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND Package Information
  • ceph-common is affected
  • OR libcephfs-devel is affected
  • OR libcephfs2 is affected
  • OR librados-devel is affected
  • OR librados2 is affected
  • OR libradospp-devel is affected
  • OR librbd-devel is affected
  • OR librbd1 is affected
  • OR librgw-devel is affected
  • OR librgw2 is affected
  • OR python3-ceph-argparse is affected
  • OR python3-ceph-common is affected
  • OR python3-cephfs is affected
  • OR python3-rados is affected
  • OR python3-rbd is affected
  • OR python3-rgw is affected
  • OR rados-objclass-devel is affected
  • OR rbd-nbd is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • ceph-common is not affected
  • OR libcephfs2 is not affected
  • OR librados2 is not affected
  • OR libradosstriper1 is not affected
  • OR librbd1 is not affected
  • OR librgw2 is not affected
  • OR python-cephfs is not affected
  • OR python-rados is not affected
  • OR python-rbd is not affected
  • OR python-rgw is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • ceph-common-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR libcephfs-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR libcephfs2-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librados-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librados2-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR libradospp-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librbd-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librbd1-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librgw-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR librgw2-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-ceph-argparse-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-ceph-common-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-cephfs-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-rados-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-rbd-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR python3-rgw-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR rados-objclass-devel-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
  • OR rbd-nbd-16.2.11.58+g38d6afd3b78-150400.3.6.1 is installed
    • BACK