Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.
Security Fix(es):
ceph: header-splitting in RGW GetObject has a possible XSS (CVE-2020-1760)
ceph: radosgw: HTTP header injection via CORS ExposeHeader tag (CVE-2020-10753)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
For detailed information on changes in this release, see the Red Hat Ceph
Storage 4.1 Release Notes available at:
https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/4.1/html/release_notes/
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | x86_64 | python3-ceph-argparse | < 14.2.8-81.el8cp | python3-ceph-argparse-14.2.8-81.el8cp.x86_64.rpm |
RedHat | 7 | noarch | ceph-grafana-dashboards | < 14.2.8-81.el7cp | ceph-grafana-dashboards-14.2.8-81.el7cp.noarch.rpm |
RedHat | 8 | s390x | rbd-mirror | < 14.2.8-81.el8cp | rbd-mirror-14.2.8-81.el8cp.s390x.rpm |
RedHat | 7 | ppc64le | ceph-fuse | < 14.2.8-81.el7cp | ceph-fuse-14.2.8-81.el7cp.ppc64le.rpm |
RedHat | 8 | ppc64le | ceph-mds | < 14.2.8-81.el8cp | ceph-mds-14.2.8-81.el8cp.ppc64le.rpm |
RedHat | 8 | ppc64le | nfs-ganesha-rgw | < 2.8.3-8.el8cp | nfs-ganesha-rgw-2.8.3-8.el8cp.ppc64le.rpm |
RedHat | 8 | ppc64le | ceph-selinux | < 14.2.8-81.el8cp | ceph-selinux-14.2.8-81.el8cp.ppc64le.rpm |
RedHat | 8 | ppc64le | python3-cephfs-debuginfo | < 14.2.8-81.el8cp | python3-cephfs-debuginfo-14.2.8-81.el8cp.ppc64le.rpm |
RedHat | 8 | x86_64 | ceph-mon-debuginfo | < 14.2.8-81.el8cp | ceph-mon-debuginfo-14.2.8-81.el8cp.x86_64.rpm |
RedHat | 8 | x86_64 | rbd-fuse-debuginfo | < 14.2.8-81.el8cp | rbd-fuse-debuginfo-14.2.8-81.el8cp.x86_64.rpm |