USN-6063-1
- Source
- https://ubuntu.com/security/notices/USN-6063-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6063-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-6063-1
- Upstream
- Related
- Published
- 2023-05-09T21:51:19.582200Z
- Modified
- 2025-10-13T04:36:25Z
- Summary
- ceph vulnerabilities
- Details
-
Mark Kirkwood discovered that Ceph incorrectly handled certain key lengths. An attacker could possibly use this issue to create non-random encryption keys. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2021-3979)
It was discovered that Ceph incorrectly handled the volumes plugin. An attacker could possibly use this issue to obtain access to any share. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-0670)
It was discovered that Ceph incorrectly handled crash dumps. A local attacker could possibly use this issue to escalate privileges to root. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-3650)
It was discovered that Ceph incorrectly handled URL processing on RGW backends. An attacker could possibly use this issue to cause RGW to crash, leading to a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 22.10. (CVE-2022-3854)
- References
Affected packages
Ubuntu:18.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph@12.2.13-0ubuntu0.18.04.11?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed12.2.13-0ubuntu0.18.04.11
Affected versions
12.*
12.2.0-0ubuntu1
12.2.1-0ubuntu1
12.2.2-0ubuntu1
12.2.2-0ubuntu2
12.2.4-0ubuntu1
12.2.4-0ubuntu1.1
12.2.7-0ubuntu0.18.04.1
12.2.8-0ubuntu0.18.04.1
12.2.8-0ubuntu0.18.04.2
12.2.11-0ubuntu0.18.04.1
12.2.11-0ubuntu0.18.04.2
12.2.12-0ubuntu0.18.04.1
12.2.12-0ubuntu0.18.04.2
12.2.12-0ubuntu0.18.04.3
12.2.12-0ubuntu0.18.04.4
12.2.12-0ubuntu0.18.04.5
12.2.13-0ubuntu0.18.04.2
12.2.13-0ubuntu0.18.04.3
12.2.13-0ubuntu0.18.04.4
12.2.13-0ubuntu0.18.04.5
12.2.13-0ubuntu0.18.04.6
12.2.13-0ubuntu0.18.04.7
12.2.13-0ubuntu0.18.04.8
12.2.13-0ubuntu0.18.04.10
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ceph",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-base",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-common",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-fuse",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-mds",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-mgr",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-mon",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-osd",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-resource-agents",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "ceph-test",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libcephfs-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libcephfs-java",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libcephfs-jni",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libcephfs2",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librados-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librados2",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libradosstriper-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "libradosstriper1",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librbd-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librbd1",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librgw-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "librgw2",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python-ceph",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python-cephfs",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python-rados",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python-rbd",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python-rgw",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python3-ceph-argparse",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python3-cephfs",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python3-rados",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python3-rbd",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "python3-rgw",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "rados-objclass-dev",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "radosgw",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "rbd-fuse",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "rbd-mirror",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
},
{
"binary_name": "rbd-nbd",
"binary_version": "12.2.13-0ubuntu0.18.04.11"
}
]
}
Ubuntu:20.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph@15.2.17-0ubuntu0.20.04.3?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed15.2.17-0ubuntu0.20.04.3
Affected versions
14.*
14.2.2-0ubuntu3
14.2.2-0ubuntu4
14.2.4-0ubuntu1
14.2.4-0ubuntu2
14.2.4-0ubuntu3
15.*
15.1.0-0ubuntu2
15.1.0-0ubuntu3
15.1.1-0ubuntu1
15.2.0-0ubuntu1
15.2.0-0ubuntu2
15.2.1-0ubuntu1
15.2.1-0ubuntu2
15.2.3-0ubuntu0.20.04.1
15.2.3-0ubuntu0.20.04.2
15.2.5-0ubuntu0.20.04.1
15.2.7-0ubuntu0.20.04.1
15.2.7-0ubuntu0.20.04.2
15.2.8-0ubuntu0.20.04.1
15.2.11-0ubuntu0.20.04.2
15.2.12-0ubuntu0.20.04.1
15.2.13-0ubuntu0.20.04.1
15.2.13-0ubuntu0.20.04.2
15.2.14-0ubuntu0.20.04.1
15.2.14-0ubuntu0.20.04.2
15.2.16-0ubuntu0.20.04.1
15.2.17-0ubuntu0.20.04.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ceph",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-base",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-common",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-fuse",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-immutable-object-cache",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mds",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-cephadm",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-dashboard",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-diskprediction-cloud",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-diskprediction-local",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-k8sevents",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-modules-core",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mgr-rook",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-mon",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-osd",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "ceph-resource-agents",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "cephadm",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "cephfs-shell",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libcephfs-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libcephfs-java",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libcephfs-jni",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libcephfs2",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librados-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librados2",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libradospp-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libradosstriper-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "libradosstriper1",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librbd-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librbd1",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librgw-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "librgw2",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-ceph",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-ceph-argparse",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-ceph-common",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-cephfs",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-rados",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-rbd",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "python3-rgw",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "rados-objclass-dev",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "radosgw",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "rbd-fuse",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "rbd-mirror",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
},
{
"binary_name": "rbd-nbd",
"binary_version": "15.2.17-0ubuntu0.20.04.3"
}
]
}
Database specific
cves_map
{
"cves": [
{
"id": "CVE-2021-3979",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
},
{
"type": "Ubuntu",
"score": "low"
}
]
},
{
"id": "CVE-2022-0670",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2022-3650",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
}
],
"ecosystem": "Ubuntu:20.04:LTS"
}
Ubuntu:22.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph@17.2.5-0ubuntu0.22.04.3?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed17.2.5-0ubuntu0.22.04.3
Affected versions
16.*
16.2.6-0ubuntu1
16.2.6-0ubuntu2
16.2.6-0ubuntu3
16.2.7-0ubuntu1
16.2.7-0ubuntu4
17.*
17.1.0-0ubuntu1
17.1.0-0ubuntu2
17.1.0-0ubuntu3
17.2.0-0ubuntu0.22.04.1
17.2.0-0ubuntu0.22.04.2
17.2.5-0ubuntu0.22.04.2
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "ceph",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-base",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-common",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-fuse",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-grafana-dashboards",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-immutable-object-cache",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mds",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-cephadm",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-dashboard",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-diskprediction-local",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-k8sevents",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-modules-core",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mgr-rook",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-mon",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-osd",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-prometheus-alerts",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-resource-agents",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "ceph-volume",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "cephadm",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "cephfs-shell",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "crimson-osd",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libcephfs-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libcephfs-java",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libcephfs-jni",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libcephfs2",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librados-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librados2",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libradospp-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libradosstriper-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libradosstriper1",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librbd-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librbd1",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librgw-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "librgw2",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libsqlite3-mod-ceph",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "libsqlite3-mod-ceph-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-ceph",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-ceph-argparse",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-ceph-common",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-cephfs",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-rados",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-rbd",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "python3-rgw",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "rados-objclass-dev",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "radosgw",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "rbd-fuse",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "rbd-mirror",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
},
{
"binary_name": "rbd-nbd",
"binary_version": "17.2.5-0ubuntu0.22.04.3"
}
]
}
Database specific
cves_map
{
"cves": [
{
"id": "CVE-2022-0670",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2022-3650",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
},
{
"id": "CVE-2022-3854",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
},
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
}
],
"ecosystem": "Ubuntu:22.04:LTS"
}