You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa ceph

Sigurnosni nedostatak programskog paketa ceph

by - 0
  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-4304-1
March 17, 2020

ceph vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.10
– Ubuntu 18.04 LTS

Summary:

Ceph could be made to stop responding if it received specially crafted
network traffic.

Software Description:
– ceph: distributed storage and file system

Details:

Or Friedman discovered that Ceph incorrectly handled disconnects. A remote
authenticated attacker could possibly use this issue to cause Ceph to
consume resources, leading to a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.10:
ceph 14.2.4-0ubuntu0.19.10.2
ceph-base 14.2.4-0ubuntu0.19.10.2
ceph-common 14.2.4-0ubuntu0.19.10.2

Ubuntu 18.04 LTS:
ceph 12.2.12-0ubuntu0.18.04.5
ceph-base 12.2.12-0ubuntu0.18.04.5
ceph-common 12.2.12-0ubuntu0.18.04.5

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4304-1
CVE-2020-1700

Package Information:
https://launchpad.net/ubuntu/+source/ceph/14.2.4-0ubuntu0.19.10.2
https://launchpad.net/ubuntu/+source/ceph/12.2.12-0ubuntu0.18.04.5

—–BEGIN PGP SIGNATURE—–
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=zcmM
—–END PGP SIGNATURE—–

AutorToni Vugdelija
Cert idNCERT-REF-2020-03-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci jezgre operacijskog sustava

Otkriveni su sigurnosni nedostaci jezgre operacijskog sustava Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja ili otkrivanje osjetljivih informacija....

Close