ceph-16.2.6.45+g8fda9838398-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10676-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ceph-16.2.6.45+g8fda9838398-1.1 on GA media These are all security issues fixed in the ceph-16.2.6.45+g8fda9838398-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10676 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2017-16818/ SUSE CVE CVE-2017-16818 page https://www.suse.com/security/cve/CVE-2018-10861/ SUSE CVE CVE-2018-10861 page https://www.suse.com/security/cve/CVE-2018-1128/ SUSE CVE CVE-2018-1128 page https://www.suse.com/security/cve/CVE-2018-16889/ SUSE CVE CVE-2018-16889 page https://www.suse.com/security/cve/CVE-2019-10222/ SUSE CVE CVE-2019-10222 page https://www.suse.com/security/cve/CVE-2019-3821/ SUSE CVE CVE-2019-3821 page https://www.suse.com/security/cve/CVE-2020-10736/ SUSE CVE CVE-2020-10736 page https://www.suse.com/security/cve/CVE-2020-1759/ SUSE CVE CVE-2020-1759 page https://www.suse.com/security/cve/CVE-2020-1760/ SUSE CVE CVE-2020-1760 page https://www.suse.com/security/cve/CVE-2021-20288/ SUSE CVE CVE-2021-20288 page https://www.suse.com/security/cve/CVE-2021-3509/ SUSE CVE CVE-2021-3509 page https://www.suse.com/security/cve/CVE-2021-3524/ SUSE CVE CVE-2021-3524 page https://www.suse.com/security/cve/CVE-2021-3531/ SUSE CVE CVE-2021-3531 page openSUSE Tumbleweed ceph-16.2.6.45+g8fda9838398-1.1 ceph-base-16.2.6.45+g8fda9838398-1.1 ceph-common-16.2.6.45+g8fda9838398-1.1 ceph-fuse-16.2.6.45+g8fda9838398-1.1 ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 ceph-mds-16.2.6.45+g8fda9838398-1.1 ceph-mgr-16.2.6.45+g8fda9838398-1.1 ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 ceph-mon-16.2.6.45+g8fda9838398-1.1 ceph-osd-16.2.6.45+g8fda9838398-1.1 ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 ceph-radosgw-16.2.6.45+g8fda9838398-1.1 cephadm-16.2.6.45+g8fda9838398-1.1 cephfs-mirror-16.2.6.45+g8fda9838398-1.1 cephfs-shell-16.2.6.45+g8fda9838398-1.1 cephfs-top-16.2.6.45+g8fda9838398-1.1 libcephfs-devel-16.2.6.45+g8fda9838398-1.1 libcephfs2-16.2.6.45+g8fda9838398-1.1 libcephsqlite-16.2.6.45+g8fda9838398-1.1 libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 librados-devel-16.2.6.45+g8fda9838398-1.1 librados2-16.2.6.45+g8fda9838398-1.1 libradospp-devel-16.2.6.45+g8fda9838398-1.1 librbd-devel-16.2.6.45+g8fda9838398-1.1 librbd1-16.2.6.45+g8fda9838398-1.1 librgw-devel-16.2.6.45+g8fda9838398-1.1 librgw2-16.2.6.45+g8fda9838398-1.1 python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 python3-ceph-common-16.2.6.45+g8fda9838398-1.1 python3-cephfs-16.2.6.45+g8fda9838398-1.1 python3-rados-16.2.6.45+g8fda9838398-1.1 python3-rbd-16.2.6.45+g8fda9838398-1.1 python3-rgw-16.2.6.45+g8fda9838398-1.1 rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 rbd-fuse-16.2.6.45+g8fda9838398-1.1 rbd-mirror-16.2.6.45+g8fda9838398-1.1 rbd-nbd-16.2.6.45+g8fda9838398-1.1 ceph-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-base-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-common-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-fuse-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mds-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-mon-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-osd-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed ceph-radosgw-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed cephadm-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed cephfs-mirror-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed cephfs-shell-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed cephfs-top-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed libcephfs-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed libcephfs2-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed libcephsqlite-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librados-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librados2-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed libradospp-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librbd-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librbd1-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librgw-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed librgw2-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-ceph-common-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-cephfs-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-rados-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-rbd-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed python3-rgw-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed rbd-fuse-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed rbd-mirror-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed rbd-nbd-16.2.6.45+g8fda9838398-1.1 as a component of openSUSE Tumbleweed RADOS Gateway in Ceph 12.1.0 through 12.2.1 allows remote authenticated users to cause a denial of service (assertion failure and application exit) by leveraging "full" (not necessarily admin) privileges to post an invalid profile to the admin API, related to rgw/rgw_iam_policy.cc, rgw/rgw_basic_types.h, and rgw/rgw_iam_types.h. CVE-2017-16818 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-16818.html CVE-2017-16818 https://bugzilla.suse.com/1063014 SUSE Bug 1063014 https://bugzilla.suse.com/1069253 SUSE Bug 1069253 A flaw was found in the way ceph mon handles user requests. Any authenticated ceph user having read access to ceph can delete, create ceph storage pools and corrupt snapshot images. Ceph branches master, mimic, luminous and jewel are believed to be affected. CVE-2018-10861 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 5.5 AV:N/AC:L/Au:S/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10861.html CVE-2018-10861 https://bugzilla.suse.com/1099162 SUSE Bug 1099162 https://bugzilla.suse.com/1114710 SUSE Bug 1114710 It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions allowed by ceph service. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable. CVE-2018-1128 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 5.4 AV:A/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-1128.html CVE-2018-1128 https://bugzilla.suse.com/1096748 SUSE Bug 1096748 https://bugzilla.suse.com/1114710 SUSE Bug 1114710 https://bugzilla.suse.com/1177843 SUSE Bug 1177843 https://bugzilla.suse.com/1177859 SUSE Bug 1177859 Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key information in log files via plaintext. Versions up to v13.2.4 are vulnerable. CVE-2018-16889 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16889.html CVE-2018-16889 https://bugzilla.suse.com/1121567 SUSE Bug 1121567 A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denial of service for Ceph RGW clients. CVE-2019-10222 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10222.html CVE-2019-10222 https://bugzilla.suse.com/1139399 SUSE Bug 1139399 https://bugzilla.suse.com/1145093 SUSE Bug 1145093 A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaust file descriptors for ceph-radosgw service resulting in a remote denial of service. CVE-2019-3821 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-3821.html CVE-2019-3821 https://bugzilla.suse.com/1125080 SUSE Bug 1125080 An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthorized resources. This flaw allows an authenticated client to modify the configuration and possibly conduct further attacks. CVE-2020-10736 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 moderate 5.2 AV:A/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-10736.html CVE-2020-10736 https://bugzilla.suse.com/1170021 SUSE Bug 1170021 A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, which can allow an attacker to forge auth tags and potentially manipulate the data by leveraging the reuse of a nonce in a session. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks. CVE-2020-1759 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 moderate 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1759.html CVE-2020-1759 https://bugzilla.suse.com/1166403 SUSE Bug 1166403 A flaw was found in the Ceph Object Gateway, where it supports request sent by an anonymous user in Amazon S3. This flaw could lead to potential XSS attacks due to the lack of proper neutralization of untrusted input. CVE-2020-1760 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-1760.html CVE-2020-1760 https://bugzilla.suse.com/1166484 SUSE Bug 1166484 An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests, it doesn't sanitize other_keys, allowing key reuse. An attacker who can request a global_id can exploit the ability of any user to request a global_id previously associated with another user, as ceph does not force the reuse of old keys to generate new ones. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2021-20288 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20288.html CVE-2021-20288 https://bugzilla.suse.com/1183074 SUSE Bug 1183074 https://bugzilla.suse.com/1205049 SUSE Bug 1205049 A flaw was found in Red Hat Ceph Storage 4, in the Dashboard component. In response to CVE-2020-27839, the JWT token was moved from localStorage to an httpOnly cookie. However, token cookies are used in the body of the HTTP response for the documentation, which again makes it available to XSS.The greatest threat to the system is for confidentiality, integrity, and availability. CVE-2021-3509 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3509.html CVE-2021-3509 https://bugzilla.suse.com/1186021 SUSE Bug 1186021 A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the response when the CORS request is made. In addition, the prior bug fix for CVE-2020-10753 did not account for the use of \r as a header separator, thus a new flaw has been created. CVE-2021-3524 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3524.html CVE-2021-3524 https://bugzilla.suse.com/1185619 SUSE Bug 1185619 A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that ends with two slashes it can cause the rgw to crash, resulting in a denial of service. The greatest threat to the system is of availability. CVE-2021-3531 openSUSE Tumbleweed:ceph-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-base-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-grafana-dashboards-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-immutable-object-cache-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mds-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-dashboard-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-diskprediction-local-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-k8sevents-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-modules-core-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mgr-rook-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-mon-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-osd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-prometheus-alerts-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:ceph-radosgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephadm-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-shell-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:cephfs-top-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephfs2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libcephsqlite-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librados2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:libradospp-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librbd1-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:librgw2-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-argparse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-ceph-common-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-cephfs-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rados-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rbd-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:python3-rgw-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rados-objclass-devel-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-fuse-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-mirror-16.2.6.45+g8fda9838398-1.1 openSUSE Tumbleweed:rbd-nbd-16.2.6.45+g8fda9838398-1.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3531.html CVE-2021-3531 https://bugzilla.suse.com/1186020 SUSE Bug 1186020