This ceph version update to 10.2.6+git fixes the following issues:
Security issues fixed:
- CVE-2016-9579: RGW server DoS via request with invalid HTTP Origin header (boo#1014986).
Bugfixes:
- Update to version 10.2.6+git.1489493035.3ad7a68
- "tools/rados: default to include clone objects when excuting "cache-flush-evict-all" (boo#1003891)
- mon,ceph-disk: add lockbox permissions to bootstrap-osd (boo#1008435)
- "ceph_volume_client: fix _recover_auth_meta() method" (boo#1008501)
- "systemd/ceph-disk: reduce ceph-disk flock contention" (boo#1012100)
- "doc: add verbiage to rbdmap manpage" and "Add Install section to systemd rbdmap.service file" (boo#1015748)
- ceph-disk: systemd unit must run after local-fs.target (boo#1012100)
- build/ops: restart ceph-osd@.service after 20s instead of 100ms (boo#1019616)
- doc: add verbiage to rbdmap manpage and mention rbdmap in RBD quick start (boo#1015748)
- doc: ceph-deploy man: remove references to mds destroy. Not implemented (boo#970642)
Feature enhancements:
- FATE#321098:
* rpm: deobfuscate SUSE-specific bconds
* rpm: consider xio bcond on x86_64 and aarch64 only
* rpm: remove s390 from SES ExclusiveArch
* rpm: limit lttng/babeltrace to architectures
* rpm: limit xio build
* rpm: enable build for s390(x) in SLE
* rpm: add "without valgrind_devel" configure option
- Submitted by Nathan Cutler (smithfarm)