SUSE-SU-2022:4501-1

Source
https://www.suse.com/support/update/announcement/2022/suse-su-20224501-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:4501-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2022:4501-1
Related
Published
2022-12-15T12:20:25Z
Modified
2022-12-15T12:20:25Z
Summary
Security update for ceph
Details

This update for ceph fixes the following issues:

ceph was updated to the Pacific release (16.2.9-536-g41a9f9a5573):

  • (bsc#1195359, bsc#1200553) rgw: check bucket shard init status in RGWRadosBILogTrimCR
  • (bsc#1194131) ceph-volume: honour osddmcryptkey_size option (CVE-2021-3979)
  • (bsc#1200064,) Remove last vestiges of docker.io image paths
  • (bsc#1196044) cephadm: prometheus: The generatorURL in alerts is only using hostname
  • (bsc#1196785) cephadm: avoid crashing on expected non-zero exit
  • (jsc#SES-2515) High-availability NFS export
  • (bsc#1194875) [SES7P] include/buffer: include <memory>
  • cephadm: update image paths to registry.suse.com
  • cephadm: use snmp-notifier image from registry.suse.de
  • cephadm: infer the default container image during pull
  • mgr/cephadm: try to get FQDN for inventory address
  • (bsc#1194875) common: fix FTBFS due to dout & need_dynamic on GCC-12
  • (bsc#1196938) cephadm: preserve authorized_keys file during upgrade
  • Update Prometheus Container image paths (pr #459)
  • mgr/dashboard: Fix documentation URL (pr #456)
  • mgr/dashboard: Adapt downstream branded navigation page (pr #454)
  • Update prometheus-server version
  • (bsc#1194353) Downstream branding breaks dashboard npm build
  • (bsc#1178073) mgr/dashboard: fix downstream NFS doc links
References

Affected packages

SUSE:Linux Enterprise Module for Basesystem 15 SP3 / ceph

Package

Name
ceph
Purl
purl:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-cephfs": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rados": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1",
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-argparse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rados-objclass-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-nbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libradospp-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP3 / fmt

Package

Name
fmt
Purl
purl:rpm/suse/fmt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.1-150300.7.5.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-cephfs": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rados": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1",
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-argparse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rados-objclass-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-nbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libradospp-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.1 / ceph

Package

Name
ceph
Purl
purl:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.1 / fmt

Package

Name
fmt
Purl
purl:rpm/suse/fmt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.1-150300.7.5.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.2 / ceph

Package

Name
ceph
Purl
purl:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.2 / fmt

Package

Name
fmt
Purl
purl:rpm/suse/fmt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.1-150300.7.5.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

openSUSE:Leap Micro 5.2 / ceph

Package

Name
ceph
Purl
purl:rpm/suse/ceph&distro=openSUSE%20Leap%20Micro%205.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

openSUSE:Leap Micro 5.2 / fmt

Package

Name
fmt
Purl
purl:rpm/suse/fmt&distro=openSUSE%20Leap%20Micro%205.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.1-150300.7.5.1

Ecosystem specific

{
    "binaries": [
        {
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1"
        }
    ]
}

openSUSE:Leap 15.3 / ceph

Package

Name
ceph
Purl
purl:rpm/suse/ceph&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-cephfs": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-osd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1",
            "ceph-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mds": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-argparse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mon": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rados-objclass-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-nbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-radosgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libradospp-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-immutable-object-cache": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-mirror": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-modules-core": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rados": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-grafana-dashboards": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephfs-shell": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-diskprediction-local": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-test": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-base": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-prometheus-alerts": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-rook": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-dashboard": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-k8sevents": "16.2.9.536+g41a9f9a5573-150300.6.3.1"
        }
    ]
}

openSUSE:Leap 15.3 / ceph-test

Package

Name
ceph-test
Purl
purl:rpm/suse/ceph-test&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.2.9.536+g41a9f9a5573-150300.6.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-cephfs": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-osd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1",
            "ceph-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mds": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-argparse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mon": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rados-objclass-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-nbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-radosgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libradospp-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-immutable-object-cache": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-mirror": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-modules-core": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rados": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-grafana-dashboards": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephfs-shell": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-diskprediction-local": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-test": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-base": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-prometheus-alerts": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-rook": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-dashboard": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-k8sevents": "16.2.9.536+g41a9f9a5573-150300.6.3.1"
        }
    ]
}

openSUSE:Leap 15.3 / fmt

Package

Name
fmt
Purl
purl:rpm/suse/fmt&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.1-150300.7.5.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-cephfs": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-osd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libfmt8": "8.0.1-150300.7.5.1",
            "ceph-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mds": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-argparse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mon": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rados-objclass-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-nbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-radosgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rgw": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libradospp-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librgw-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephadm": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-immutable-object-cache": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-mirror": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-modules-core": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rados": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librbd1": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "librados-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-common": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "python3-rbd": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs2": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-grafana-dashboards": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "cephfs-shell": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "rbd-fuse": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-diskprediction-local": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-test": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-base": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-prometheus-alerts": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "libcephfs-devel": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-rook": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-dashboard": "16.2.9.536+g41a9f9a5573-150300.6.3.1",
            "ceph-mgr-k8sevents": "16.2.9.536+g41a9f9a5573-150300.6.3.1"
        }
    ]
}