Security update for ceph
Announcement ID: | SUSE-SU-2017:0367-1 |
Rating: | moderate |
References: | #1005179 #1007216 #1008501 #1008894 #1014338 #977940 #982141 #985232 #987144 #990438 #999688 |
Affected Products: |
An update that solves one vulnerability and has 10 fixes is now available.
Description:
This update for ceph fixes the following issues:
* CVE-2016-5009: moncommand with empty prefix could crash monitor
[bsc#987144]
* Invalid commandd in SOC7 with ceph [bsc#1008894]
* Performance fix was missing in SES4 [bsc#1005179]
* ceph build problems on ppc64le [bsc#982141]
* ceph make build unit test failure [bsc#977940]
* ceph-deploy mon create-initial fails on one node [bsc#999688]
* MDS dies while running xfstests [bsc#985232]
* Typerror while calling _recover_auth_meta() [bsc#1008501]
* OSD daemon uses ~100% CPU load right after OSD creation / first OSD
start [bsc#1014338]
* civetweb HTTPS support not working [bsc#990438]
* systemd is killing off OSDs [bsc#1007216]
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Software Development Kit 12-SP2:
zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-186=1
- SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-186=1
- SUSE Linux Enterprise Server 12-SP2:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-186=1
- SUSE Linux Enterprise Desktop 12-SP2:
zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-186=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 x86_64):
- ceph-debugsource-10.2.4+git.1481215985.12b091b-15.2
- libcephfs-devel-10.2.4+git.1481215985.12b091b-15.2
- librados-devel-10.2.4+git.1481215985.12b091b-15.2
- librados-devel-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper-devel-10.2.4+git.1481215985.12b091b-15.2
- librbd-devel-10.2.4+git.1481215985.12b091b-15.2
- SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64):
- ceph-common-10.2.4+git.1481215985.12b091b-15.2
- ceph-common-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- ceph-debugsource-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librados2-10.2.4+git.1481215985.12b091b-15.2
- librados2-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librbd1-10.2.4+git.1481215985.12b091b-15.2
- librbd1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rados-10.2.4+git.1481215985.12b091b-15.2
- python-rados-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- SUSE Linux Enterprise Server 12-SP2 (aarch64 x86_64):
- ceph-common-10.2.4+git.1481215985.12b091b-15.2
- ceph-common-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- ceph-debugsource-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librados2-10.2.4+git.1481215985.12b091b-15.2
- librados2-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librbd1-10.2.4+git.1481215985.12b091b-15.2
- librbd1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rados-10.2.4+git.1481215985.12b091b-15.2
- python-rados-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- SUSE Linux Enterprise Desktop 12-SP2 (x86_64):
- ceph-common-10.2.4+git.1481215985.12b091b-15.2
- ceph-common-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- ceph-debugsource-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-10.2.4+git.1481215985.12b091b-15.2
- libcephfs1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librados2-10.2.4+git.1481215985.12b091b-15.2
- librados2-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-10.2.4+git.1481215985.12b091b-15.2
- libradosstriper1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- librbd1-10.2.4+git.1481215985.12b091b-15.2
- librbd1-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-10.2.4+git.1481215985.12b091b-15.2
- python-cephfs-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rados-10.2.4+git.1481215985.12b091b-15.2
- python-rados-debuginfo-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-10.2.4+git.1481215985.12b091b-15.2
- python-rbd-debuginfo-10.2.4+git.1481215985.12b091b-15.2
References:
- https://www.suse.com/security/cve/CVE-2016-5009.html
- https://bugzilla.suse.com/1005179
- https://bugzilla.suse.com/1007216
- https://bugzilla.suse.com/1008501
- https://bugzilla.suse.com/1008894
- https://bugzilla.suse.com/1014338
- https://bugzilla.suse.com/977940
- https://bugzilla.suse.com/982141
- https://bugzilla.suse.com/985232
- https://bugzilla.suse.com/987144
- https://bugzilla.suse.com/990438
- https://bugzilla.suse.com/999688