USN-7706-1
- Source
- https://ubuntu.com/security/notices/USN-7706-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7706-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-7706-1
- Upstream
- Related
- Published
- 2025-08-20T05:36:40.309565Z
- Modified
- 2025-10-13T04:42:21Z
- Summary
- ceph vulnerabilities
- Details
-
It was discovered that Ceph incorrectly handled read-only permissions. An authenticated attacker could use this issue to obtain dm-crypt encryption keys. This issue only affected Ubuntu 14.04 LTS. (CVE-2018-14662)
Sergey Bobrov discovered that Ceph’s RadosGW (Ceph Object Gateway) allowed the injection of HTTP headers in responses to CORS requests. An attacker could possibly use this issue to compromise system integrity. This issue only affected Ubuntu 16.04 LTS. (CVE-2021-3524)
- References
Affected packages
Ubuntu:Pro:14.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph@0.80.11-0ubuntu1.14.04.4+esm3?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.80.11-0ubuntu1.14.04.4+esm3
Affected versions
0.*
0.67.4-0ubuntu2
0.67.4-0ubuntu3
0.72-0ubuntu1
0.72.1-0ubuntu1
0.72.1-2
0.72.1-3
0.72.2-1
0.72.2-2
0.78-0ubuntu1
0.79-0ubuntu1
0.80.1-0ubuntu1
0.80.1-0ubuntu1.1
0.80.5-0ubuntu0.14.04.1
0.80.7-0ubuntu0.14.04.1
0.80.9-0ubuntu0.14.04.1
0.80.9-0ubuntu0.14.04.2
0.80.10-0ubuntu0.14.04.1
0.80.10-0ubuntu1.14.04.2
0.80.10-0ubuntu1.14.04.3
0.80.11-0ubuntu1.14.04.1
0.80.11-0ubuntu1.14.04.2
0.80.11-0ubuntu1.14.04.3
0.80.11-0ubuntu1.14.04.4
0.80.11-0ubuntu1.14.04.4+esm2
Ecosystem specific
{
"availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "ceph",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-common",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-fs-common",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-fuse",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-mds",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-resource-agents",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "ceph-test",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "libcephfs-dev",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "libcephfs-java",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "libcephfs-jni",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "libcephfs1",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "librados-dev",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "librados2",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "librbd-dev",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "librbd1",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "python-ceph",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "radosgw",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "rbd-fuse",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
},
{
"binary_name": "rest-bench",
"binary_version": "0.80.11-0ubuntu1.14.04.4+esm3"
}
]
}
Database specific
cves_map
{
"cves": [
{
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
},
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
},
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2018-14662"
}
],
"ecosystem": "Ubuntu:Pro:14.04:LTS"
}
Ubuntu:Pro:16.04:LTS / ceph
Package
- Name
- ceph
- Purl
- pkg:deb/ubuntu/ceph@10.2.11-0ubuntu0.16.04.3+esm2?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed10.2.11-0ubuntu0.16.04.3+esm2
Affected versions
0.*
0.94.3-0ubuntu2
0.94.5-0ubuntu1
9.*
9.2.0-0ubuntu3
9.2.0-0ubuntu4
9.2.0-0ubuntu5
9.2.0-0ubuntu6
10.*
10.0.2-0ubuntu1
10.0.3-0ubuntu1
10.0.5-0ubuntu1
10.1.0-0ubuntu1
10.1.1-0ubuntu1
10.1.2-0ubuntu1
10.2.0-0ubuntu0.16.04.1
10.2.0-0ubuntu0.16.04.2
10.2.2-0ubuntu0.16.04.2
10.2.3-0ubuntu0.16.04.2
10.2.5-0ubuntu0.16.04.1
10.2.6-0ubuntu0.16.04.1
10.2.7-0ubuntu0.16.04.1
10.2.9-0ubuntu0.16.04.1
10.2.10-0ubuntu0.16.04.1
10.2.11-0ubuntu0.16.04.1
10.2.11-0ubuntu0.16.04.2
10.2.11-0ubuntu0.16.04.3
10.2.11-0ubuntu0.16.04.3+esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "ceph",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-common",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-fs-common",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-fuse",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-mds",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-resource-agents",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "ceph-test",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libcephfs-dev",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libcephfs-java",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libcephfs-jni",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libcephfs1",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librados-dev",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librados2",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libradosstriper-dev",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "libradosstriper1",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librbd-dev",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librbd1",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librgw-dev",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "librgw2",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "python-ceph",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "python-cephfs",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "python-rados",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "python-rbd",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "radosgw",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "rbd-fuse",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "rbd-mirror",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
},
{
"binary_name": "rbd-nbd",
"binary_version": "10.2.11-0ubuntu0.16.04.3+esm2"
}
]
}