Vulnerability Database
Blog
FAQ
Docs
RHSA-2019:2538
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2019:2538
Import Source
https://security.access.redhat.com/data/osv/RHSA-2019:2538.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2019:2538
Related
CVE-2018-14662
CVE-2018-16846
CVE-2018-16889
Published
2024-09-13T15:12:04Z
Modified
2024-09-13T15:12:04Z
Severity
6.5 (Medium)
CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat Ceph Storage 3.3 security, bug fix, and enhancement update
Details
References
https://access.redhat.com/errata/RHSA-2019:2538
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/3.3/html/release_notes/index
https://bugzilla.redhat.com/show_bug.cgi?id=1337915
https://bugzilla.redhat.com/show_bug.cgi?id=1572933
https://bugzilla.redhat.com/show_bug.cgi?id=1599852
https://bugzilla.redhat.com/show_bug.cgi?id=1627567
https://bugzilla.redhat.com/show_bug.cgi?id=1628309
https://bugzilla.redhat.com/show_bug.cgi?id=1628311
https://bugzilla.redhat.com/show_bug.cgi?id=1631010
https://bugzilla.redhat.com/show_bug.cgi?id=1636136
https://bugzilla.redhat.com/show_bug.cgi?id=1637327
https://bugzilla.redhat.com/show_bug.cgi?id=1639712
https://bugzilla.redhat.com/show_bug.cgi?id=1644321
https://bugzilla.redhat.com/show_bug.cgi?id=1644461
https://bugzilla.redhat.com/show_bug.cgi?id=1644610
https://bugzilla.redhat.com/show_bug.cgi?id=1644847
https://bugzilla.redhat.com/show_bug.cgi?id=1651054
https://bugzilla.redhat.com/show_bug.cgi?id=1656908
https://bugzilla.redhat.com/show_bug.cgi?id=1659611
https://bugzilla.redhat.com/show_bug.cgi?id=1661504
https://bugzilla.redhat.com/show_bug.cgi?id=1665334
https://bugzilla.redhat.com/show_bug.cgi?id=1666822
https://bugzilla.redhat.com/show_bug.cgi?id=1668478
https://bugzilla.redhat.com/show_bug.cgi?id=1668896
https://bugzilla.redhat.com/show_bug.cgi?id=1668897
https://bugzilla.redhat.com/show_bug.cgi?id=1669838
https://bugzilla.redhat.com/show_bug.cgi?id=1670527
https://bugzilla.redhat.com/show_bug.cgi?id=1670785
https://bugzilla.redhat.com/show_bug.cgi?id=1677269
https://bugzilla.redhat.com/show_bug.cgi?id=1680144
https://bugzilla.redhat.com/show_bug.cgi?id=1680155
https://bugzilla.redhat.com/show_bug.cgi?id=1685253
https://bugzilla.redhat.com/show_bug.cgi?id=1685734
https://bugzilla.redhat.com/show_bug.cgi?id=1686306
https://bugzilla.redhat.com/show_bug.cgi?id=1695850
https://bugzilla.redhat.com/show_bug.cgi?id=1696227
https://bugzilla.redhat.com/show_bug.cgi?id=1696691
https://bugzilla.redhat.com/show_bug.cgi?id=1696880
https://bugzilla.redhat.com/show_bug.cgi?id=1700896
https://bugzilla.redhat.com/show_bug.cgi?id=1701029
https://bugzilla.redhat.com/show_bug.cgi?id=1702091
https://bugzilla.redhat.com/show_bug.cgi?id=1702092
https://bugzilla.redhat.com/show_bug.cgi?id=1702093
https://bugzilla.redhat.com/show_bug.cgi?id=1702097
https://bugzilla.redhat.com/show_bug.cgi?id=1702099
https://bugzilla.redhat.com/show_bug.cgi?id=1702100
https://bugzilla.redhat.com/show_bug.cgi?id=1702732
https://bugzilla.redhat.com/show_bug.cgi?id=1703557
https://bugzilla.redhat.com/show_bug.cgi?id=1704948
https://bugzilla.redhat.com/show_bug.cgi?id=1705258
https://bugzilla.redhat.com/show_bug.cgi?id=1705922
https://bugzilla.redhat.com/show_bug.cgi?id=1708346
https://bugzilla.redhat.com/show_bug.cgi?id=1708650
https://bugzilla.redhat.com/show_bug.cgi?id=1708798
https://bugzilla.redhat.com/show_bug.cgi?id=1709765
https://bugzilla.redhat.com/show_bug.cgi?id=1710855
https://bugzilla.redhat.com/show_bug.cgi?id=1713779
https://bugzilla.redhat.com/show_bug.cgi?id=1714810
https://bugzilla.redhat.com/show_bug.cgi?id=1714814
https://bugzilla.redhat.com/show_bug.cgi?id=1715577
https://bugzilla.redhat.com/show_bug.cgi?id=1715946
https://bugzilla.redhat.com/show_bug.cgi?id=1717135
https://bugzilla.redhat.com/show_bug.cgi?id=1718135
https://bugzilla.redhat.com/show_bug.cgi?id=1718328
https://bugzilla.redhat.com/show_bug.cgi?id=1719023
https://bugzilla.redhat.com/show_bug.cgi?id=1720205
https://bugzilla.redhat.com/show_bug.cgi?id=1720741
https://bugzilla.redhat.com/show_bug.cgi?id=1721165
https://bugzilla.redhat.com/show_bug.cgi?id=1722663
https://bugzilla.redhat.com/show_bug.cgi?id=1722664
https://bugzilla.redhat.com/show_bug.cgi?id=1725521
https://bugzilla.redhat.com/show_bug.cgi?id=1725536
https://bugzilla.redhat.com/show_bug.cgi?id=1732142
https://bugzilla.redhat.com/show_bug.cgi?id=1732706
https://bugzilla.redhat.com/show_bug.cgi?id=1734550
https://bugzilla.redhat.com/show_bug.cgi?id=1739209
https://access.redhat.com/security/data/csaf/v2/advisories/2019/rhsa-2019_2538.json
https://access.redhat.com/security/cve/CVE-2018-14662
https://www.cve.org/CVERecord?id=CVE-2018-14662
https://nvd.nist.gov/vuln/detail/CVE-2018-14662
https://ceph.com/releases/13-2-4-mimic-released
https://access.redhat.com/security/cve/CVE-2018-16846
https://www.cve.org/CVERecord?id=CVE-2018-16846
https://nvd.nist.gov/vuln/detail/CVE-2018-16846
https://ceph.com/releases/13-2-4-mimic-released/
https://access.redhat.com/security/cve/CVE-2018-16889
https://www.cve.org/CVERecord?id=CVE-2018-16889
https://nvd.nist.gov/vuln/detail/CVE-2018-16889
Affected packages
Red Hat:ceph_storage:3::el7
/
ceph
Package
Name
ceph
Purl
pkg:rpm/redhat/ceph
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-base
Package
Name
ceph-base
Purl
pkg:rpm/redhat/ceph-base
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-common
Package
Name
ceph-common
Purl
pkg:rpm/redhat/ceph-common
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-debuginfo
Package
Name
ceph-debuginfo
Purl
pkg:rpm/redhat/ceph-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-fuse
Package
Name
ceph-fuse
Purl
pkg:rpm/redhat/ceph-fuse
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-mds
Package
Name
ceph-mds
Purl
pkg:rpm/redhat/ceph-mds
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-mgr
Package
Name
ceph-mgr
Purl
pkg:rpm/redhat/ceph-mgr
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-mon
Package
Name
ceph-mon
Purl
pkg:rpm/redhat/ceph-mon
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-osd
Package
Name
ceph-osd
Purl
pkg:rpm/redhat/ceph-osd
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-radosgw
Package
Name
ceph-radosgw
Purl
pkg:rpm/redhat/ceph-radosgw
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-selinux
Package
Name
ceph-selinux
Purl
pkg:rpm/redhat/ceph-selinux
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-test
Package
Name
ceph-test
Purl
pkg:rpm/redhat/ceph-test
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
libcephfs-devel
Package
Name
libcephfs-devel
Purl
pkg:rpm/redhat/libcephfs-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
libcephfs2
Package
Name
libcephfs2
Purl
pkg:rpm/redhat/libcephfs2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librados-devel
Package
Name
librados-devel
Purl
pkg:rpm/redhat/librados-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librados2
Package
Name
librados2
Purl
pkg:rpm/redhat/librados2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
libradosstriper1
Package
Name
libradosstriper1
Purl
pkg:rpm/redhat/libradosstriper1
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librbd-devel
Package
Name
librbd-devel
Purl
pkg:rpm/redhat/librbd-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librbd1
Package
Name
librbd1
Purl
pkg:rpm/redhat/librbd1
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librgw-devel
Package
Name
librgw-devel
Purl
pkg:rpm/redhat/librgw-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
librgw2
Package
Name
librgw2
Purl
pkg:rpm/redhat/librgw2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
python-cephfs
Package
Name
python-cephfs
Purl
pkg:rpm/redhat/python-cephfs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
python-rados
Package
Name
python-rados
Purl
pkg:rpm/redhat/python-rados
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
python-rbd
Package
Name
python-rbd
Purl
pkg:rpm/redhat/python-rbd
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
python-rgw
Package
Name
python-rgw
Purl
pkg:rpm/redhat/python-rgw
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
rbd-mirror
Package
Name
rbd-mirror
Purl
pkg:rpm/redhat/rbd-mirror
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:12.2.12-45.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-ansible
Package
Name
ceph-ansible
Purl
pkg:rpm/redhat/ceph-ansible
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.2.24-1.el7cp
Red Hat:ceph_storage:3::el7
/
ceph-iscsi-config
Package
Name
ceph-iscsi-config
Purl
pkg:rpm/redhat/ceph-iscsi-config
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.6-19.el7cp
Red Hat:ceph_storage:3::el7
/
cephmetrics
Package
Name
cephmetrics
Purl
pkg:rpm/redhat/cephmetrics
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.6-1.el7cp
Red Hat:ceph_storage:3::el7
/
cephmetrics-ansible
Package
Name
cephmetrics-ansible
Purl
pkg:rpm/redhat/cephmetrics-ansible
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.6-1.el7cp
Red Hat:ceph_storage:3::el7
/
libntirpc
Package
Name
libntirpc
Purl
pkg:rpm/redhat/libntirpc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.7.4-1.el7cp
Red Hat:ceph_storage:3::el7
/
libntirpc-debuginfo
Package
Name
libntirpc-debuginfo
Purl
pkg:rpm/redhat/libntirpc-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.7.4-1.el7cp
Red Hat:ceph_storage:3::el7
/
nfs-ganesha
Package
Name
nfs-ganesha
Purl
pkg:rpm/redhat/nfs-ganesha
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.7.4-10.el7cp
Red Hat:ceph_storage:3::el7
/
nfs-ganesha-ceph
Package
Name
nfs-ganesha-ceph
Purl
pkg:rpm/redhat/nfs-ganesha-ceph
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.7.4-10.el7cp
Red Hat:ceph_storage:3::el7
/
nfs-ganesha-debuginfo
Package
Name
nfs-ganesha-debuginfo
Purl
pkg:rpm/redhat/nfs-ganesha-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.7.4-10.el7cp
Red Hat:ceph_storage:3::el7
/
nfs-ganesha-rgw
Package
Name
nfs-ganesha-rgw
Purl
pkg:rpm/redhat/nfs-ganesha-rgw
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.7.4-10.el7cp
Red Hat:ceph_storage:3::el7
/
python-crypto
Package
Name
python-crypto
Purl
pkg:rpm/redhat/python-crypto
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.6.1-16.el7ost
Red Hat:ceph_storage:3::el7
/
python-crypto-debuginfo
Package
Name
python-crypto-debuginfo
Purl
pkg:rpm/redhat/python-crypto-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.6.1-16.el7ost
Red Hat:ceph_storage:3::el7
/
python2-crypto
Package
Name
python2-crypto
Purl
pkg:rpm/redhat/python2-crypto
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.6.1-16.el7ost
RHSA-2019:2538 - OSV