Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:3925
HistoryJun 13, 2024 - 2:11 p.m.

(RHSA-2024:3925) Critical: Red Hat Ceph Storage 7.1 security, enhancements, and bug fix update

2024-06-1314:11:14
access.redhat.com
1
red hat
ceph storage
7.1
security
enhancements
bug fix

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 High

AI Score

Confidence

High

JSON

Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.

These new packages include numerous enhancements, bug fixes, and known issues. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Ceph Storage Release Notes for information on the most significant of these changes:

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/7.1/html/release_notes/index

OSVersionArchitecturePackageVersionFilename
RedHat9ppc64leceph-selinux< 18.2.1-194.el9cpceph-selinux-18.2.1-194.el9cp.ppc64le.rpm
RedHat9s390xlibcephfs2-debuginfo< 18.2.1-194.el9cplibcephfs2-debuginfo-18.2.1-194.el9cp.s390x.rpm
RedHat9ppc64lepython3-ceph-argparse< 18.2.1-194.el9cppython3-ceph-argparse-18.2.1-194.el9cp.ppc64le.rpm
RedHat8x86_64libcephsqlite-debuginfo< 18.2.1-194.el8cplibcephsqlite-debuginfo-18.2.1-194.el8cp.x86_64.rpm
RedHat9s390xceph-fuse-debuginfo< 18.2.1-194.el9cpceph-fuse-debuginfo-18.2.1-194.el9cp.s390x.rpm
RedHat8x86_64libradospp-devel< 18.2.1-194.el8cplibradospp-devel-18.2.1-194.el8cp.x86_64.rpm
RedHat9s390xceph-selinux< 18.2.1-194.el9cpceph-selinux-18.2.1-194.el9cp.s390x.rpm
RedHat9ppc64leceph-base-debuginfo< 18.2.1-194.el9cpceph-base-debuginfo-18.2.1-194.el9cp.ppc64le.rpm
RedHat8x86_64gperftools-libs-debuginfo< 2.7-9.el8cpgperftools-libs-debuginfo-2.7-9.el8cp.x86_64.rpm
RedHat9s390xceph-fuse< 18.2.1-194.el9cpceph-fuse-18.2.1-194.el9cp.s390x.rpm
Rows per page:
1-10 of 3001

Related

nessus 19
redhat 34
ibm 8
amazon 2
cbl_mariner 4
osv 13
redhatcve 4
ubuntucve 3
nvd 4
github 4
prion 4
cvelist 4
veracode 4
debiancve 2
alpinelinux 3
cve 4
wolfi 2
openvas 4
cgr 2
oraclelinux 2
rocky 1
almalinux 2
freebsd 1
rosalinux 1
thn 1
redos 2
nessus
nessus
RHEL 8 / 9 : Red Hat Ceph Storage 7.1 (RHSA-2024:3925)
2024-06-14 00:00:00
RHEL 9 : go-git (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 8 : Release of OpenShift Serverless Client kn 1.31.1 (RHSA-2024:0880)
2024-04-28 00:00:00
redhat
redhat
(RHSA-2024:0740) Critical: OpenShift Container Platform 4.13.33 security and extras update
2024-02-14 05:47:55
(RHSA-2024:0729) Critical: Red Hat Advanced Cluster Management 2.7.11 security and bug fix container update
2024-02-07 20:02:42
(RHSA-2024:1896) Important: OpenShift Container Platform 4.12.56 security update
2024-04-25 14:15:27
ibm
ibm
Security Bulletin: IBM Instana Observability is affected by Vulnerabilities in Go-git with Instana Agent container image
2024-03-15 13:48:36
Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from Docker Registry, OpenSSH and go-git
2024-03-28 10:40:24
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-02-28 17:30:02
amazon
amazon
Important: amazon-ssm-agent
2024-02-14 20:03:00
Important: amazon-ssm-agent
2024-02-15 03:52:00
cbl_mariner
cbl_mariner
CVE-2023-49568 affecting package cri-o for versions less than 1.30.1-1
2024-06-21 09:32:44
CVE-2023-49569 affecting package cri-o for versions less than 1.30.1-1
2024-06-21 09:32:44
CVE-2023-49569 affecting package packer for versions less than 1.10.1-1
2024-04-12 05:06:27
osv
osv
Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
2024-01-10 15:37:05
Path traversal and RCE in github.com/go-git/go-git/v5 and gopkg.in/src-d/go-git.v4
2024-01-23 15:29:09
Maliciously crafted Git server replies can cause DoS on go-git clients
2023-12-27 15:06:52
redhatcve
redhatcve
CVE-2023-49569
2024-01-12 22:34:25
CVE-2023-49568
2024-01-13 00:03:04
CVE-2023-4822
2023-11-23 04:50:25
ubuntucve
ubuntucve
CVE-2023-49569
2024-01-12 00:00:00
CVE-2023-4822
2023-10-16 00:00:00
CVE-2023-49568
2024-01-12 00:00:00
nvd
nvd
CVE-2023-49568
2024-01-12 11:15:12
CVE-2023-4822
2023-10-16 09:15:11
CVE-2023-49569
2024-01-12 11:15:13
github
github
Maliciously crafted Git server replies can cause DoS on go-git clients
2023-12-27 15:06:52
Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
2024-01-10 15:37:05
Grafana privilege escalation vulnerability
2023-10-16 09:30:19
prion
prion
Path traversal
2024-01-12 11:15:00
Design/Logic Flaw
2023-10-16 09:15:00
Design/Logic Flaw
2024-01-12 11:15:00
cvelist
cvelist
CVE-2023-49569 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
2024-01-12 10:41:00
CVE-2023-49568 Maliciously crafted Git server replies can cause DoS on go-git clients
2024-01-12 10:36:12
CVE-2023-4822
2023-10-16 08:45:59
veracode
veracode
Denial Of Service (DoS)
2023-12-28 14:22:10
Improper Privilege Management
2023-10-19 08:06:21
Path Traversal
2024-01-11 06:38:13
debiancve
debiancve
CVE-2023-49568
2024-01-12 11:15:12
CVE-2023-49569
2024-01-12 11:15:13
alpinelinux
alpinelinux
CVE-2023-49568
2024-01-12 11:15:12
CVE-2023-4822
2023-10-16 09:15:11
CVE-2023-3128
2023-06-22 21:15:00
cve
cve
CVE-2023-49568
2024-01-12 11:15:12
CVE-2023-49569
2024-01-12 11:15:13
CVE-2023-4822
2023-10-16 09:15:11
wolfi
wolfi
CVE-2023-49569 vulnerabilities
2024-07-09 09:08:46
CVE-2023-49568 vulnerabilities
2024-07-09 09:08:46
openvas
openvas
Grafana 8.x < 9.4.17, 9.5.x < 9.5.13, 9.6.x < 10.0.9, 10.1.x < 10.1.5 Cross-Organization Permission Escalation Vulnerability
2023-10-16 00:00:00
Grafana 6.7.x < 8.5.27, 9.x < 9.2.20, 9.3.x < 9.3.16, 9.4.x < 9.4.13, 9.5.x < 9.5.5, 10.x < 10.0.1 Authentication Bypass Vulnerability
2023-06-23 00:00:00
openSUSE: Security Advisory for SUSE Manager Client Tools (SUSE-SU-2023:2917-1)
2024-03-04 00:00:00
cgr
cgr
CVE-2023-49568 vulnerabilities
2024-05-19 03:07:16
CVE-2023-49569 vulnerabilities
2024-05-19 03:07:16
oraclelinux
oraclelinux
grafana security update
2023-07-19 00:00:00
grafana security and enhancement update
2023-11-17 00:00:00
rocky
rocky
grafana security update
2023-07-19 17:53:40
almalinux
almalinux
Moderate: grafana security and enhancement update
2023-11-14 00:00:00
Critical: grafana security update
2023-07-12 00:00:00
freebsd
freebsd
Grafana -- Account takeover / authentication bypass
2023-06-22 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2181
2023-07-04 13:37:03
thn
thn
New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks
2023-06-27 05:35:00
redos
redos
ROS-20240404-01
2024-04-04 00:00:00
ROS-20240403-01
2024-04-03 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 High

AI Score

Confidence

High

JSON
Related for RHSA-2024:3925
nessus19redhat34ibm8amazon2cbl_mariner4osv13redhatcve4ubuntucve3nvd4github4prion4cvelist4veracode4debiancve2alpinelinux3cve4wolfi2openvas4cgr2oraclelinux2rocky1almalinux2freebsd1rosalinux1thn1redos2