Package "libcephfs-jni"

Name: libcephfs-jni


Java Native Interface library for CephFS Java bindings

Latest version: 14.2.9-0ubuntu0.19.10.1
Release: eoan (19.10)
Level: updates
Repository: universe
Head package: ceph
Homepage: http://ceph.com/


Download "libcephfs-jni"

Other versions of "libcephfs-jni" in Eoan

Repository Area Version
base universe 14.2.2-0ubuntu3
security universe 14.2.4-0ubuntu0.19.10.2


Version: 14.2.9-0ubuntu0.19.10.1 2020-06-04 09:06:29 UTC

  ceph (14.2.9-0ubuntu0.19.10.1) eoan; urgency=medium

  [ Tiago Pasqualini da Silva ]
  * d/p/bug1867386: Cherry pick change that adds new configuration
    option in RGW Beast frontend to allow tuning of maximum backlog
    of pending connections (LP: #1867386).

  [ James Page ]
  * New upstream point release (LP: #1878146) including fixes for:
    - CVE-2020-1759: Fixed nonce reuse in msgr V2 secure mode
    - CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting

 -- James Page <email address hidden> Thu, 21 May 2020 08:52:43 +0100

Source diff to previous version
1867386 Beast frontend does not allow tuning of maximum backlog of pending connections
1878146 [SRU] ceph 14.2.9
CVE-2020-1759 A vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discovered in
CVE-2020-1760 header-splitting in RGW GetObject has a possible XSS

Version: 14.2.8-0ubuntu0.19.10.1 2020-04-08 16:06:36 UTC

  ceph (14.2.8-0ubuntu0.19.10.1) eoan; urgency=medium

  * New upstream point release (LP: #1861789):
    - d/p/issue{37490,40114,40781}.patch: Drop, included in point release.
    - d/control: Add libcap-ng-dev to BD's.
    - d/control: Add libnl-genl-3-dev to BD's.
    - d/p/bluefs-use-uint64_t-for-len.patch: Fix type mismatch issue on
      32bit architectures.
    - d/p/CVE-2020-1700.patch: Drop, included in release.
    - d/p/32bit-fixes.patch: Misc 32 bit architecture fixes for
      mismatched types.
  * d/control: Add missing Depends on python3-{distutils,routes} to
    ceph-mgr-dashboard package (LP: #1858304).

 -- James Page <email address hidden> Wed, 25 Mar 2020 15:59:57 +0000

Source diff to previous version
1861789 [SRU] ceph 14.2.8
1858304 [SRU] ceph-mgr-dashboard package missing dependencies
CVE-2020-1700 A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making mult

Version: 14.2.4-0ubuntu0.19.10.2 2020-03-18 03:06:33 UTC

  ceph (14.2.4-0ubuntu0.19.10.2) eoan-security; urgency=medium

  * SECURITY UPDATE: DoS via RGW Beast front-end unexpected disconnects
    - debian/patches/CVE-2020-1700.patch: avoid leaking connections in
    - CVE-2020-1700

 -- Marc Deslauriers <email address hidden> Mon, 10 Feb 2020 11:07:55 -0500

Source diff to previous version
CVE-2020-1700 A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making mult

Version: 14.2.4-0ubuntu0.19.10.1 2020-01-16 12:06:27 UTC

  ceph (14.2.4-0ubuntu0.19.10.1) eoan; urgency=medium

  [ Dariusz Gadomski ]
  * d/p/issue37490.patch: Cherry pick fix to optimize LVM queries in
    ceph-volume, resolving performance issues in systems under heavy load
    or with large numbers of disks (LP: #1850754).

  [ James Page ]
  * New upstream release (LP: #1850901):
    - d/p/CVE-2019-10222.patch,ceph-volume-wait-for-lvs.patch,
      more-py3-compat.patch: Drop, included upstream.
    - d/p/bluefs-use-uint64_t-for-len.patch: Cherry pick fix to resolve
      FTBFS on 32 bit architectures.
  * d/p/issue40114.patch: Cherry pick endian fixes to resolve issues
    using Ceph on big-endian architectures such as s390x (LP: #1851290).

 -- James Page <email address hidden> Fri, 22 Nov 2019 09:59:04 +0000

1850901 [SRU] ceph 14.2.4
1851290 Add backport for (s390x) endian fixes to ceph nautilus
CVE-2019-10222 RESERVED

About   -   Send Feedback to @ubuntu_updates