File _patchinfo of Package patchinfo.14301
<patchinfo incident="14301">
<issue tracker="bnc" id="1166484">VUL-0: EMBARGOED: CVE-2020-1760: ceph: RGW GetObject has a XSS via header-splitting</issue>
<issue tracker="bnc" id="1166403">VUL-0: EMBARGOED: CVE-2020-1759: ceph: Nonce reuse in msgr2 secure mode</issue>
<issue tracker="cve" id="2020-1759"/>
<issue tracker="cve" id="2020-1760"/>
<packager>smithfarm</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for ceph</summary>
<description>This update for ceph fixes the following issues:
- CVE-2020-1759: Fixed once reuse in msgr V2 secure mode (bsc#1166403)
- CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting (bsc#1166484).
</description>
</patchinfo>