Oval Definition:	oval:org.opensuse.security:def:64451
Revision Date: 2020-12-21 Version: 1 Title: Security update for ceph (Important) Description: This update for ceph fixes the following issues: Security issue fixed: - CVE-2020-27781: Fixed a privilege escalation via the ceph_volume_client Python interface (bsc#1180155, bsc#1179802). Non-security issues fixed: - Update to 15.2.8-80-g1f4b6229ca: + Rebase on tip of upstream 'octopus' branch, SHA1 bdf3eebcd22d7d0b3dd4d5501bee5bac354d5b55 * upstream Octopus v15.2.8 release, see https://ceph.io/releases/v15-2-8-octopus-released/ - Update to 15.2.7-776-g343cd10fe5: + Rebase on tip of upstream 'octopus' branch, SHA1 1b8a634fdcd94dfb3ba650793fb1b6d09af65e05 * (bsc#1178860) mgr/dashboard: Disable TLS 1.0 and 1.1 + (bsc#1179016) rpm: require smartmontools on SUSE + (bsc#1180107) ceph-volume: pass --filter-for-batch from drive-group subcommand Family: unix Class: patch Status: Reference(s): 1043898 1043899 1047841 1106843 1113719 1123156 1154790 1161066 1162729 1163018 1165776 1166240 1166379 1171271 1172186 1177895 1178860 1179016 1179802 1180107 1180155 941629 CVE-2012-2417 CVE-2013-1445 CVE-2013-7459 CVE-2017-11104 CVE-2017-2626 CVE-2017-8834 CVE-2017-8871 CVE-2018-18751 CVE-2019-15034 CVE-2019-20382 CVE-2019-6778 CVE-2020-12672 CVE-2020-1711 CVE-2020-27153 CVE-2020-27781 CVE-2020-7039 CVE-2020-8165 CVE-2020-8608 openSUSE-SU-2020:0468-1 openSUSE-SU-2020:0779-1 openSUSE-SU-2020:0780-1 openSUSE-SU-2020:1085-1 openSUSE-SU-2020:1278-1 openSUSE-SU-2020:1677-1 openSUSE-SU-2020:1876-1 SUSE-SU-2020:3895-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND knot-1.6.8-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information gettext-csharp-0.19.8.1-lp152.6.3 is installed OR gettext-java-0.19.8.1-lp152.6.3 is installed OR gettext-runtime-0.19.8.1-lp152.6.3 is installed OR gettext-runtime-32bit-0.19.8.1-lp152.6.3 is installed OR gettext-runtime-mini-0.19.8.1-lp152.6.3 is installed OR gettext-runtime-mini-tools-doc-0.19.8.1-lp152.6.3 is installed OR gettext-runtime-tools-doc-0.19.8.1-lp152.6.3 is installed OR gettext-tools-0.19.8.1-lp152.6.3 is installed OR gettext-tools-mini-0.19.8.1-lp152.6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information ceph-common-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR libcephfs-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR libcephfs2-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librados-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librados2-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR libradospp-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librbd-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librbd1-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librgw-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR librgw2-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-ceph-argparse-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-ceph-common-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-cephfs-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-rados-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-rbd-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR python3-rgw-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR rados-objclass-devel-15.2.8.80+g1f4b6229ca-3.13.1 is installed OR rbd-nbd-15.2.8.80+g1f4b6229ca-3.13.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND python3-pycrypto-2.6.1-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libICE6-32bit-1.0.9-1 is installed
BACK