Oval Definition:
oval:org.opensuse.security:def:66802
Revision Date
:
2021-06-02
Version
:
1
Title
:
Security update for ceph (Important)
Description
:
This update for ceph fixes the following issues:
- Update to 15.2.12-83-g528da226523:
- (CVE-2021-3509) fix cookie injection issue (bsc#1186021)
- (CVE-2021-3531) RGWSwiftWebsiteHandler::is_web_dir checks empty subdir_name (bsc#1186020)
- (CVE-2021-3524) sanitize \r in s3 CORSConfiguration’s ExposeHeader (bsc#1185619)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1185619
1186020
1186021
CVE-2014-2524
CVE-2016-10214
CVE-2017-5937
CVE-2017-5957
CVE-2017-5993
CVE-2017-5994
CVE-2017-6386
CVE-2019-18388
CVE-2019-18389
CVE-2019-18390
CVE-2019-18391
CVE-2021-3509
CVE-2021-3524
CVE-2021-3531
Platform(s)
:
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
AND
Package Information
crash-7.2.8-16 is installed
OR
crash-devel-7.2.8-16 is installed
OR
crash-kmp-default-7.2.8_k5.3.18_22-16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
AND
Package Information
libvirglrenderer0-0.6.0-4.3 is installed
OR
virglrenderer-devel-0.6.0-4.3 is installed
BACK