Oval Definition:oval:org.opensuse.security:def:51803
Revision Date:2020-12-01Version:1
Title:Security update for ceph (Moderate)
Description:

This update for ceph version 13.2.4 fixes the following issues:

Security issues fixed:

- CVE-2018-14662: Fixed an issue with LUKS 'config-key' safety (bsc#1111177) - CVE-2018-10861: Fixed an authorization bypass on OSD pool ops in ceph-mon (bsc#1099162) - CVE-2018-1128: Fixed signature check bypass in cephx (bsc#1096748) - CVE-2018-1129: Fixed replay attack in cephx protocol (bsc#1096748) - CVE-2018-16846: Enforced bounds on max-keys/max-uploads/max-parts in rgw

Non-security issues fixed:

- ceph-volume Python 3 fixes (bsc#1114567) - fix python3 module loading (bsc#1086613)
Family:unixClass:patch
Status:Reference(s):1082023
1084645
1086613
1096748
1099162
1101262
1111177
1114567
1132501
1133624
1133625
1135855
1141122
1145559
1149792
1157119
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1160673
1160922
1163102
1163103
1163104
1165439
1174628
CVE-2012-1152
CVE-2012-2369
CVE-2013-1988
CVE-2013-6393
CVE-2014-2525
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-9092
CVE-2014-9130
CVE-2015-5185
CVE-2015-8079
CVE-2018-10861
CVE-2018-1128
CVE-2018-1129
CVE-2018-14662
CVE-2018-16846
CVE-2019-10691
CVE-2019-11494
CVE-2019-11499
CVE-2019-11500
CVE-2019-12269
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-15604
CVE-2019-15605
CVE-2019-15606
CVE-2019-18904
CVE-2019-19604
CVE-2020-14344
CVE-2020-1747
SUSE-SU-2019:0586-1
SUSE-SU-2019:0997-1
SUSE-SU-2019:1576-1
SUSE-SU-2020:0045-1
SUSE-SU-2020:0278-1
SUSE-SU-2020:0455-1
SUSE-SU-2020:0959-1
SUSE-SU-2020:2197-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • dbus-1-1.12.2-lp150.1 is installed
  • OR dbus-1-x11-1.12.2-lp150.1 is installed
  • OR libdbus-1-3-1.12.2-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libFLAC++6-1.2.1-68.17 is installed
  • OR libFLAC8-1.2.1-68.17 is installed
  • OR libFLAC8-32bit-1.2.1-68.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND xscreensaver-5.07-6.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libXRes1-1.0.7-3 is installed
  • OR libXRes1-32bit-1.0.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libjpeg-turbo-1.3.1-30 is installed
  • OR libjpeg62-62.1.0-30 is installed
  • OR libjpeg62-32bit-62.1.0-30 is installed
  • OR libjpeg62-turbo-1.3.1-30 is installed
  • OR libjpeg8-8.0.2-30 is installed
  • OR libjpeg8-32bit-8.0.2-30 is installed
  • OR libturbojpeg0-8.0.2-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libQt5WebKit5-5.6.1-9 is installed
  • OR libQt5WebKit5-imports-5.6.1-9 is installed
  • OR libQt5WebKitWidgets5-5.6.1-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libXRes1-1.0.7-3 is installed
  • OR libXRes1-32bit-1.0.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gnome-keyring-3.20.0-28.3 is installed
  • OR gnome-keyring-32bit-3.20.0-28.3 is installed
  • OR gnome-keyring-lang-3.20.0-28.3 is installed
  • OR gnome-keyring-pam-3.20.0-28.3 is installed
  • OR gnome-keyring-pam-32bit-3.20.0-28.3 is installed
  • OR libgck-modules-gnome-keyring-3.20.0-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • ceph-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-base-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-fuse-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-mds-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-mgr-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-mon-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-osd-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-radosgw-13.2.4.125+gad802694f5-3.7 is installed
  • OR ceph-resource-agents-13.2.4.125+gad802694f5-3.7 is installed
  • OR rbd-fuse-13.2.4.125+gad802694f5-3.7 is installed
  • OR rbd-mirror-13.2.4.125+gad802694f5-3.7 is installed
  • OR rbd-nbd-13.2.4.125+gad802694f5-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND Package Information
  • python-PyYAML-5.1.2-6.6 is installed
  • OR python2-PyYAML-5.1.2-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • dovecot23-2.3.3-4.18 is installed
  • OR dovecot23-backend-mysql-2.3.3-4.18 is installed
  • OR dovecot23-backend-pgsql-2.3.3-4.18 is installed
  • OR dovecot23-backend-sqlite-2.3.3-4.18 is installed
  • OR dovecot23-devel-2.3.3-4.18 is installed
  • OR dovecot23-fts-2.3.3-4.18 is installed
  • OR dovecot23-fts-lucene-2.3.3-4.18 is installed
  • OR dovecot23-fts-solr-2.3.3-4.18 is installed
  • OR dovecot23-fts-squat-2.3.3-4.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • rmt-server-2.5.2-3.9 is installed
  • OR rmt-server-config-2.5.2-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs10-10.19.0-1.18 is installed
  • OR nodejs10-devel-10.19.0-1.18 is installed
  • OR nodejs10-docs-10.19.0-1.18 is installed
  • OR npm10-10.19.0-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libapr-util1-1.5.3-1 is installed
  • OR libapr-util1-dbd-sqlite3-1.5.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • python3-rpm-4.11.2-16.21 is installed
  • OR rpm-4.11.2-16.21 is installed
  • OR rpm-32bit-4.11.2-16.21 is installed
  • OR rpm-build-4.11.2-16.21 is installed
  • OR rpm-python-4.11.2-16.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND mailx-12.5-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gpg2-2.0.24-9.3 is installed
  • OR gpg2-lang-2.0.24-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • res-signingkeys-3.0.37-52.23 is installed
  • OR smt-3.0.37-52.23 is installed
  • OR smt-support-3.0.37-52.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.113 is installed
  • OR kernel-default-base-4.4.180-94.113 is installed
  • OR kernel-default-devel-4.4.180-94.113 is installed
  • OR kernel-devel-4.4.180-94.113 is installed
  • OR kernel-macros-4.4.180-94.113 is installed
  • OR kernel-source-4.4.180-94.113 is installed
  • OR kernel-syms-4.4.180-94.113 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND ucode-intel-20191112-13.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed
  • OR openssl-1.0.2j-60.39 is installed
  • OR openssl-doc-1.0.2j-60.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cpio-2.11-36.3 is installed
  • OR cpio-lang-2.11-36.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • libX11-1.6.5-3.9 is installed
  • OR libX11-6-1.6.5-3.9 is installed
  • OR libX11-6-32bit-1.6.5-3.9 is installed
  • OR libX11-data-1.6.5-3.9 is installed
  • OR libX11-devel-1.6.5-3.9 is installed
  • OR libX11-xcb1-1.6.5-3.9 is installed
  • OR libX11-xcb1-32bit-1.6.5-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND enigmail-2.0.11-3.16 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_12-22.18 is installed
  • OR xen-doc-html-4.5.5_12-22.18 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed
  • OR xen-libs-4.5.5_12-22.18 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18 is installed
  • OR xen-tools-4.5.5_12-22.18 is installed
  • OR xen-tools-domU-4.5.5_12-22.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • git-2.12.3-27.17 is installed
  • OR git-core-2.12.3-27.17 is installed
  • OR git-doc-2.12.3-27.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-rack-1.6.11-3.3 is installed
  • OR rubygem-rack-1.6.11-3.3 is installed
    • BACK