UBUNTU-CVE-2020-1759
- Source
- https://ubuntu.com/security/CVE-2020-1759
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-1759.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-1759
- Related
- Published
- 2020-04-13T13:15:00Z
- Modified
- 2020-04-13T13:15:00Z
- Severity
-
- 6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in the secure mode of the messenger v2 protocol, which can allow an attacker to forge auth tags and potentially manipulate the data by leveraging the reuse of a nonce in a session. Messages encrypted using a reused nonce value are susceptible to serious confidentiality and integrity attacks.
- References
Affected packages
Ubuntu:20.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed15.2.1-0ubuntu1
Affected versions
14.*
14.2.2-0ubuntu3
14.2.2-0ubuntu4
14.2.4-0ubuntu1
14.2.4-0ubuntu2
14.2.4-0ubuntu3
15.*
15.1.0-0ubuntu2
15.1.0-0ubuntu3
15.1.1-0ubuntu1
15.2.0-0ubuntu1
15.2.0-0ubuntu2
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-base"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-base-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-common"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-common-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-fuse"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-fuse-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-immutable-object-cache"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-immutable-object-cache-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mds"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mds-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-cephadm"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-dashboard"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-diskprediction-cloud"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-diskprediction-local"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-k8sevents"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-modules-core"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mgr-rook"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mon"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-mon-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-osd"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-osd-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "ceph-resource-agents"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "cephadm"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "cephfs-shell"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs-java"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs-jni"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs-jni-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs2"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libcephfs2-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librados-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librados-dev-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librados2"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librados2-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libradospp-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libradosstriper-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libradosstriper1"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "libradosstriper1-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librbd-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librbd1"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librbd1-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librgw-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librgw2"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "librgw2-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-ceph"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-ceph-argparse"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-ceph-common"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-cephfs"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-cephfs-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rados"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rados-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rbd"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rbd-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rgw"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "python3-rgw-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rados-objclass-dev"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "radosgw"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "radosgw-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-fuse"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-fuse-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-mirror"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-mirror-dbgsym"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-nbd"
},
{
"binary_version": "15.2.1-0ubuntu1",
"binary_name": "rbd-nbd-dbgsym"
}
]
}