270 lines
11 KiB
JSON
270 lines
11 KiB
JSON
{
|
|
"Definition": [
|
|
{
|
|
"ID": "oval:org.altlinux.errata:def:20182576",
|
|
"Version": "oval:org.altlinux.errata:def:20182576",
|
|
"Class": "patch",
|
|
"Metadata": {
|
|
"Title": "ALT-PU-2018-2576: package `ceph` update to version 12.2.9-alt1",
|
|
"AffectedList": [
|
|
{
|
|
"Family": "unix",
|
|
"Platforms": [
|
|
"ALT Linux branch c10f1"
|
|
],
|
|
"Products": [
|
|
"ALT SP Workstation",
|
|
"ALT SP Server"
|
|
]
|
|
}
|
|
],
|
|
"References": [
|
|
{
|
|
"RefID": "ALT-PU-2018-2576",
|
|
"RefURL": "https://errata.altlinux.org/ALT-PU-2018-2576",
|
|
"Source": "ALTPU"
|
|
},
|
|
{
|
|
"RefID": "CVE-2018-10861",
|
|
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-10861",
|
|
"Source": "CVE"
|
|
},
|
|
{
|
|
"RefID": "CVE-2018-1128",
|
|
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-1128",
|
|
"Source": "CVE"
|
|
},
|
|
{
|
|
"RefID": "CVE-2018-1129",
|
|
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-1129",
|
|
"Source": "CVE"
|
|
}
|
|
],
|
|
"Description": "This update upgrades ceph to version 12.2.9-alt1. \nSecurity Fix(es):\n\n * CVE-2018-10861: A flaw was found in the way ceph mon handles user requests. Any authenticated ceph user having read access to ceph can delete, create ceph storage pools and corrupt snapshot images. Ceph branches master, mimic, luminous and jewel are believed to be affected.\n\n * CVE-2018-1128: It was found that cephx authentication protocol did not verify ceph clients correctly and was vulnerable to replay attack. Any attacker having access to ceph cluster network who is able to sniff packets on network can use this vulnerability to authenticate with ceph service and perform actions allowed by ceph service. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.\n\n * CVE-2018-1129: A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.",
|
|
"Advisory": {
|
|
"From": "errata.altlinux.org",
|
|
"Severity": "High",
|
|
"Rights": "Copyright 2024 BaseALT Ltd.",
|
|
"Issued": {
|
|
"Date": "2018-10-30"
|
|
},
|
|
"Updated": {
|
|
"Date": "2018-10-30"
|
|
},
|
|
"BDUs": null,
|
|
"CVEs": [
|
|
{
|
|
"ID": "CVE-2018-10861",
|
|
"CVSS": "AV:N/AC:L/Au:S/C:N/I:P/A:P",
|
|
"CVSS3": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
|
|
"CWE": "CWE-287",
|
|
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-10861",
|
|
"Impact": "High",
|
|
"Public": "20180710"
|
|
},
|
|
{
|
|
"ID": "CVE-2018-1128",
|
|
"CVSS": "AV:A/AC:M/Au:N/C:P/I:P/A:P",
|
|
"CVSS3": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
"CWE": "CWE-287",
|
|
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-1128",
|
|
"Impact": "High",
|
|
"Public": "20180710"
|
|
},
|
|
{
|
|
"ID": "CVE-2018-1129",
|
|
"CVSS": "AV:A/AC:L/Au:N/C:N/I:P/A:N",
|
|
"CVSS3": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
|
|
"CWE": "CWE-287",
|
|
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-1129",
|
|
"Impact": "Low",
|
|
"Public": "20180710"
|
|
}
|
|
],
|
|
"AffectedCPEs": {
|
|
"CPEs": [
|
|
"cpe:/o:alt:spworkstation:10",
|
|
"cpe:/o:alt:spserver:10"
|
|
]
|
|
}
|
|
}
|
|
},
|
|
"Criteria": {
|
|
"Operator": "AND",
|
|
"Criterions": [
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:4001",
|
|
"Comment": "ALT Linux must be installed"
|
|
}
|
|
],
|
|
"Criterias": [
|
|
{
|
|
"Operator": "OR",
|
|
"Criterions": [
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576001",
|
|
"Comment": "ceph is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576002",
|
|
"Comment": "ceph-base is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576003",
|
|
"Comment": "ceph-common is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576004",
|
|
"Comment": "ceph-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576005",
|
|
"Comment": "ceph-fuse is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576006",
|
|
"Comment": "ceph-mds is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576007",
|
|
"Comment": "ceph-mgr is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576008",
|
|
"Comment": "ceph-mon is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576009",
|
|
"Comment": "ceph-osd is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576010",
|
|
"Comment": "ceph-radosgw is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576011",
|
|
"Comment": "ceph-resource-agents is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576012",
|
|
"Comment": "ceph-test is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576013",
|
|
"Comment": "libcephfs2 is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576014",
|
|
"Comment": "libcephfs2-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576015",
|
|
"Comment": "librados2 is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576016",
|
|
"Comment": "librados2-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576017",
|
|
"Comment": "libradosstriper1 is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576018",
|
|
"Comment": "libradosstriper1-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576019",
|
|
"Comment": "librbd1 is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576020",
|
|
"Comment": "librbd1-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576021",
|
|
"Comment": "librgw2 is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576022",
|
|
"Comment": "librgw2-devel is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576023",
|
|
"Comment": "python-module-ceph is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576024",
|
|
"Comment": "python-module-ceph-argparse is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576025",
|
|
"Comment": "python-module-ceph_detect_init is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576026",
|
|
"Comment": "python-module-ceph_disk is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576027",
|
|
"Comment": "python-module-ceph_volume is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576028",
|
|
"Comment": "python-module-cephfs is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576029",
|
|
"Comment": "python-module-rados is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576030",
|
|
"Comment": "python-module-rbd is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576031",
|
|
"Comment": "python-module-rgw is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576032",
|
|
"Comment": "python3-module-ceph is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576033",
|
|
"Comment": "python3-module-ceph-argparse is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576034",
|
|
"Comment": "python3-module-cephfs is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576035",
|
|
"Comment": "python3-module-rados is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576036",
|
|
"Comment": "python3-module-rbd is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576037",
|
|
"Comment": "python3-module-rgw is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576038",
|
|
"Comment": "rbd-fuse is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576039",
|
|
"Comment": "rbd-mirror is earlier than 0:12.2.9-alt1"
|
|
},
|
|
{
|
|
"TestRef": "oval:org.altlinux.errata:tst:20182576040",
|
|
"Comment": "rbd-nbd is earlier than 0:12.2.9-alt1"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
} |