Overview

File _patchinfo of Package patchinfo.18960

<patchinfo incident="18960">
  <issue tracker="bnc" id="1182766">Octopus 15.2.9 "cephadm --image PATH pull" dies with "ValueError: not enough values to unpack (expected 2, got 1)"</issue>
  <issue tracker="bnc" id="1176828">SES7: "cephadm unit status --name osd.5" does not provide desired output.</issue>
  <issue tracker="bnc" id="1177857">Upgrade stuck in HEALTH_ERR - Module 'cephadm' has failed: auth get failed: failed to find osd.21 in keyring retval: -2</issue>
  <issue tracker="bnc" id="1176390">Dashboard config just gets shortname for grafana-api-url configured - but should have FQDN</issue>
  <issue tracker="bnc" id="1177360">All containerized daemon logs start with disturbing error messages (Error: Failed to evict container: "": Failed to find container)</issue>
  <issue tracker="bnc" id="1178905">VUL-1: CVE-2020-25678: ceph: ceph-dashboard: mgr modules' passwords are in clear text in mgr logs</issue>
  <issue tracker="bnc" id="1179997">VUL-0: CVE-2020-27839: ceph: ceph-dashboard: Don't use Browser's LocalStorage for storing JWT but Secure Cookies with proper HTTP Headers</issue>
  <issue tracker="bnc" id="1179569">Error initializing source for Grafana, Prometheus and Alertmanager</issue>
  <issue tracker="bnc" id="1178860">SES6: Disable TLS 1.0 to fix CEPH nodes vulnerabilities</issue>
  <issue tracker="bnc" id="1176679">SES7: SES Dashboard displays "c2boyd5&#8217;s server IP address could not be found." instead of graphs.</issue>
  <issue tracker="bnc" id="1178837">L3-Question: What is the root cause of storage service stop?</issue>
  <issue tracker="bnc" id="1178932">After applying maintenance update, cephadm no longer works: podman: invalid reference format</issue>
  <issue tracker="bnc" id="1172926">"ceph orch device ls" does not sort the output of devices per host</issue>
  <issue tracker="bnc" id="1176489">during OSD deletion: Module 'cephadm' has failed: Set changed size during iteration</issue>
  <issue tracker="cve" id="2020-25678"/>
  <issue tracker="cve" id="2020-27839"/>
  <packager>smithfarm</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for ceph</summary>
  <description>This update for ceph fixes the following issues:

- ceph was updated to to 15.2.9
- cephadm: fix 'inspect' and 'pull' (bsc#1182766)
- CVE-2020-27839: mgr/dashboard: Use secure cookies to store JWT Token (bsc#1179997)
- CVE-2020-25678: Do not add sensitive information in Ceph log files (bsc#1178905)
- mgr/orchestrator: Sort 'ceph orch device ls' by host (bsc#1172926)
- mgr/dashboard: enable different URL for users of browser to Grafana (bsc#1176390, bsc#1176679)
- mgr/cephadm: lock multithreaded access to OSDRemovalQueue (bsc#1176489)
- cephadm: command_unit: call systemctl with verbose=True (bsc#1176828)
- cephadm: silence "Failed to evict container" log msg (bsc#1177360)
- mgr/cephadm: upgrade: fail gracefully, if daemon redeploy fails (bsc#1177857)
- rgw: cls/user: set from_index for reset stats calls (bsc#1178837)
- mgr/dashboard: Disable TLS 1.0 and 1.1 (bsc#1178860)
- cephadm: reference the last local image by digest (bsc#1178932, bsc#1179569)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places