File _patchinfo of Package patchinfo.17598
<patchinfo incident="17598">
<issue tracker="bnc" id="1179452">make check test run-tox-mgr-insights fails due to missing "six" module</issue>
<issue tracker="bnc" id="1179139">collection_list_legacy: pg inconsistent</issue>
<issue tracker="bnc" id="1178837">L3-Question: What is the root cause of storage service stop?</issue>
<issue tracker="bnc" id="1179802">VUL-0: CVE-2020-27781: ceph: User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila</issue>
<issue tracker="bnc" id="1180118">L3: Running "ceph-bluestore-tool repair" after upgrade to SES 6 fails on one OSD</issue>
<issue tracker="bnc" id="1180155">VUL-0: CVE-2020-27781: ceph: cephx privilege escalation possible via ceph_volume_client Python interface</issue>
<issue tracker="cve" id="2020-27781"/>
<packager>smithfarm</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for ceph</summary>
<description>This update for ceph fixes the following issues:
Security issues fixed:
- CVE-2020-27781: Fixed a privilege escalation via the ceph_volume_client Python interface (bsc#1179802 bsc#1180155).
Non-security issues fixed:
- Fixes an issue when check in legacy collection reaches end. (bsc#1179139)
- Fixes an issue when storage service stops. (bsc#1178837)
- Fix for failing test run due to missing module 'six'. (bsc#1179452)
- Provide a different name for the fallback allocator in bluestore. (bsc#1180118)
</description>
</patchinfo>