Overview

File _patchinfo of Package patchinfo.14301

<patchinfo incident="14301">
  <issue tracker="bnc" id="1166484">VUL-0: EMBARGOED: CVE-2020-1760: ceph: RGW GetObject has a XSS via header-splitting</issue>
  <issue tracker="bnc" id="1166403">VUL-0: EMBARGOED: CVE-2020-1759: ceph: Nonce reuse in msgr2 secure mode</issue>
  <issue tracker="cve" id="2020-1759"/>
  <issue tracker="cve" id="2020-1760"/>
  <packager>smithfarm</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for ceph</summary>
  <description>This update for ceph fixes the following issues:

- CVE-2020-1759: Fixed once reuse in msgr V2 secure mode (bsc#1166403)
- CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting (bsc#1166484).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places