[ubuntu-cloud-archive/mitaka-proposed] ceph (Accepted)

Corey Bryant corey.bryant at canonical.com
Wed Jul 3 22:25:37 UTC 2019


 ceph (10.2.11-0ubuntu0.16.04.2~cloud0) trusty-mitaka; urgency=medium
 .
   * New update for the Ubuntu Cloud Archive.
 .
 ceph (10.2.11-0ubuntu0.16.04.2) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: incorrect permissions on dm-crypt keys
     - debian/patches/CVE-2018-14662.patch: limit caps allowed to access the
       store in qa/suites/rados/singleton/all/mon-config-key-caps.yaml,
       qa/workunits/mon/test_config_key_caps.sh, src/mon/MonCap.cc.
     - CVE-2018-14662
   * SECURITY UPDATE: DoS against OMAPs holding bucket indices
     - debian/patches/CVE-2018-16846-pre1.patch: enforce bounds on
       max-keys/max-uploads/max-parts in src/rgw/rgw_op.cc,
       src/rgw/rgw_op.h, src/rgw/rgw_rest.cc, src/rgw/rgw_rest_swift.cc,
       src/common/config_opts.h.
     - debian/patches/CVE-2018-16846.patch: fix issues with 'enforce bounds'
       patch in src/rgw/rgw_op.cc, src/rgw/rgw_op.h, src/rgw/rgw_rest.cc.
     - CVE-2018-16846

Date: Wed, 26 Jun 2019 14:43:27 +0000
Changed-By: Openstack Ubuntu Testing Bot <openstack-testing-bot at ubuntu.com>
Signed-By: Openstack Ubuntu Testing Bot
Published-By: Corey Bryant <corey.bryant at canonical.com>


More information about the Cloud-archive-changes mailing list