[ubuntu/hirsute-updates] ceph 16.2.4-0ubuntu0.21.04.1 (Accepted)

Brian Murray brian at ubuntu.com
Tue Jul 13 16:44:48 UTC 2021

ceph (16.2.4-0ubuntu0.21.04.1) hirsute; urgency=medium

  [ Chris MacNaughton ]
  * d/ceph-base.install: Remove ceph-deploy man page installation
    (LP: #1892448).

  [ James Page ]
  * SECURITY UPDATE: New upstream release (LP: #1928645):
    - CVE-2021-3509: Dashboard XSS via token cookie.
    - CVE-2021-3531: Swift API denial of service.
    - CVE-2021-3531: HTTP header injects via CORS in RGW.
    - d/p/bug1925347.patch: Drop, included in release.

Date: 2021-05-27 05:20:09.206755+00:00
Changed-By: James Page <james.page at ubuntu.com>
Signed-By: Brian Murray <brian at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Hirsute-changes mailing list