Package "ceph"

Name: ceph


distributed storage and file system

Latest version: 15.2.7-0ubuntu0.20.10.3
Release: groovy (20.10)
Level: security
Repository: main
Homepage: http://ceph.com/


Download "ceph"

Other versions of "ceph" in Groovy

Repository Area Version
base universe 15.2.5-0ubuntu1
base main 15.2.5-0ubuntu1
security universe 15.2.7-0ubuntu0.20.10.3
updates main 15.2.7-0ubuntu0.20.10.3
updates universe 15.2.7-0ubuntu0.20.10.3
proposed main 15.2.8-0ubuntu0.20.10.1
proposed universe 15.2.8-0ubuntu0.20.10.1

Packages in group

Deleted packages are displayed in grey.


Version: 15.2.7-0ubuntu0.20.10.3 2021-01-27 16:06:23 UTC

  ceph (15.2.7-0ubuntu0.20.10.3) groovy-security; urgency=medium

  * No-change rebuild in security pocket.
  * SECURITY UPDATE: Authorization bypass vulnerability
    - CVE-2020-10736
    - CVE-2020-25660
  * SECURITY UPDATE: Code injection vulnerability
    - CVE-2020-10753

 -- Paulo Flabiano Smorigo <email address hidden> Wed, 20 Jan 2021 19:11:04 +0000

Source diff to previous version
CVE-2020-10736 An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restri
CVE-2020-25660 A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph clients correctly a
CVE-2020-10753 A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers via a CORS

Version: 15.2.5-0ubuntu1.1 2020-11-02 16:06:41 UTC

  ceph (15.2.5-0ubuntu1.1) groovy-security; urgency=medium

  * Add back missing header file
    - ceph_statx.h actually got renamed to ceph_ll_client.h, so add it
      back to debian/libcephfs-devel.install to fix FTBFS in other

 -- Marc Deslauriers <email address hidden> Fri, 16 Oct 2020 14:02:11 -0400

About   -   Send Feedback to @ubuntu_updates