Oval Definition:	oval:org.opensuse.security:def:63865
Revision Date: 2020-12-01 Version: 1 Title: Security update for ceph (Important) Description: This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-14662: mon: limit caps allowed to access the config store (bsc#1111177) - CVE-2018-16846: rgw: enforce bounds on max-keys/max-uploads/max-parts (bsc#1114710) - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth (bsc#1121567) Non-security issue fixed: - os/bluestore: avoid frequent allocator dump on bluefs rebalance failure (bsc#1113246) Family: unix Class: patch Status: Reference(s): 1079548 1088004 1088009 1111177 1111622 1113246 1114710 1121567 1122668 1129537 1130840 1140868 1141853 1149955 1151178 1153238 1159478 1159479 1159482 1159486 1162423 1170557 1173274 1174091 1174117 1174121 1174538 1174701 CVE-2018-14647 CVE-2018-14662 CVE-2018-16846 CVE-2018-16889 CVE-2018-18074 CVE-2018-20852 CVE-2018-6459 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-15043 CVE-2019-16056 CVE-2019-16239 CVE-2019-16935 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-20907 CVE-2019-9628 CVE-2019-9811 CVE-2019-9947 CVE-2020-12245 CVE-2020-13379 CVE-2020-13934 CVE-2020-13935 CVE-2020-14422 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-6463 CVE-2020-6514 openSUSE-SU-2019:1782-1 openSUSE-SU-2019:2385-1 openSUSE-SU-2020:0403-1 openSUSE-SU-2020:0892-1 openSUSE-SU-2020:1155-1 SUSE-SU-2019:0499-1 SUSE-SU-2019:0928-1 SUSE-SU-2020:0016-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:2699-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaFirefox-60.8.0-lp151.2.10 is installed OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed OR libfreebl3-3.44.1-lp151.2.3 is installed OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-3.44.1-lp151.2.3 is installed OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-3.44.1-lp151.2.3 is installed OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information MozillaFirefox-78.1.0-lp152.2.12 is installed OR MozillaFirefox-branding-upstream-78.1.0-lp152.2.12 is installed OR MozillaFirefox-buildsymbols-78.1.0-lp152.2.12 is installed OR MozillaFirefox-devel-78.1.0-lp152.2.12 is installed OR MozillaFirefox-translations-common-78.1.0-lp152.2.12 is installed OR MozillaFirefox-translations-other-78.1.0-lp152.2.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ceph-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR ceph-common-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR libcephfs2-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR librados2-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR libradosstriper1-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR librbd1-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR librgw2-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR python-cephfs-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR python-rados-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR python-rbd-12.2.10+git.1549630712.bb089269ea-2.27 is installed OR python-rgw-12.2.10+git.1549630712.bb089269ea-2.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information tomcat-9.0.36-3.45 is installed OR tomcat-admin-webapps-9.0.36-3.45 is installed OR tomcat-docs-webapp-9.0.36-3.45 is installed OR tomcat-el-3_0-api-9.0.36-3.45 is installed OR tomcat-javadoc-9.0.36-3.45 is installed OR tomcat-jsp-2_3-api-9.0.36-3.45 is installed OR tomcat-lib-9.0.36-3.45 is installed OR tomcat-servlet-4_0-api-9.0.36-3.45 is installed OR tomcat-webapps-9.0.36-3.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
BACK