An update for ceph is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2021-1100 Final 1.0 1.0 2021-04-07 Initial 2021-04-07 2021-04-07 openEuler SA Tool V1.0 2021-04-07 ceph security update An update for ceph is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1. Ceph is a massively scalable, open-source, distributed storage system that runs on commodity hardware and delivers object, block and file system storage. Security Fix(es): A flaw was found in ceph in versions prior to 16.y.z where ceph stores mgr module passwords in clear text. This can be found by searching the mgr logs for grafana and dashboard, with passwords visible.(CVE-2020-25678) An update for ceph is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium ceph https://openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2021-1100 https://openeuler.org/en/security/cve/detail.html?id=CVE-2020-25678 https://nvd.nist.gov/vuln/detail/CVE-2020-25678 openEuler-20.03-LTS openEuler-20.03-LTS-SP1 librgw2-12.2.8-11.oe1.aarch64.rpm ceph-radosgw-12.2.8-11.oe1.aarch64.rpm librados-devel-12.2.8-11.oe1.aarch64.rpm ceph-osd-12.2.8-11.oe1.aarch64.rpm ceph-mgr-12.2.8-11.oe1.aarch64.rpm ceph-mon-12.2.8-11.oe1.aarch64.rpm rbd-mirror-12.2.8-11.oe1.aarch64.rpm librgw-devel-12.2.8-11.oe1.aarch64.rpm rbd-nbd-12.2.8-11.oe1.aarch64.rpm python3-rbd-12.2.8-11.oe1.aarch64.rpm libradosstriper1-12.2.8-11.oe1.aarch64.rpm ceph-debugsource-12.2.8-11.oe1.aarch64.rpm python-ceph-compat-12.2.8-11.oe1.aarch64.rpm ceph-test-12.2.8-11.oe1.aarch64.rpm rbd-fuse-12.2.8-11.oe1.aarch64.rpm python-rgw-12.2.8-11.oe1.aarch64.rpm ceph-debuginfo-12.2.8-11.oe1.aarch64.rpm ceph-fuse-12.2.8-11.oe1.aarch64.rpm librbd1-12.2.8-11.oe1.aarch64.rpm python3-cephfs-12.2.8-11.oe1.aarch64.rpm ceph-common-12.2.8-11.oe1.aarch64.rpm ceph-mds-12.2.8-11.oe1.aarch64.rpm libcephfs2-12.2.8-11.oe1.aarch64.rpm ceph-selinux-12.2.8-11.oe1.aarch64.rpm python-cephfs-12.2.8-11.oe1.aarch64.rpm ceph-resource-agents-12.2.8-11.oe1.aarch64.rpm libradosstriper-devel-12.2.8-11.oe1.aarch64.rpm librbd-devel-12.2.8-11.oe1.aarch64.rpm python3-rgw-12.2.8-11.oe1.aarch64.rpm python-rados-12.2.8-11.oe1.aarch64.rpm libcephfs-devel-12.2.8-11.oe1.aarch64.rpm rados-objclass-devel-12.2.8-11.oe1.aarch64.rpm python3-rados-12.2.8-11.oe1.aarch64.rpm python-rbd-12.2.8-11.oe1.aarch64.rpm python3-ceph-argparse-12.2.8-11.oe1.aarch64.rpm librados2-12.2.8-11.oe1.aarch64.rpm ceph-12.2.8-11.oe1.aarch64.rpm ceph-base-12.2.8-11.oe1.aarch64.rpm librgw2-12.2.8-12.oe1.aarch64.rpm ceph-radosgw-12.2.8-12.oe1.aarch64.rpm librados-devel-12.2.8-12.oe1.aarch64.rpm ceph-osd-12.2.8-12.oe1.aarch64.rpm ceph-mgr-12.2.8-12.oe1.aarch64.rpm ceph-mon-12.2.8-12.oe1.aarch64.rpm rbd-mirror-12.2.8-12.oe1.aarch64.rpm librgw-devel-12.2.8-12.oe1.aarch64.rpm rbd-nbd-12.2.8-12.oe1.aarch64.rpm python3-rbd-12.2.8-12.oe1.aarch64.rpm libradosstriper1-12.2.8-12.oe1.aarch64.rpm ceph-debugsource-12.2.8-12.oe1.aarch64.rpm python-ceph-compat-12.2.8-12.oe1.aarch64.rpm ceph-test-12.2.8-12.oe1.aarch64.rpm rbd-fuse-12.2.8-12.oe1.aarch64.rpm python-rgw-12.2.8-12.oe1.aarch64.rpm ceph-debuginfo-12.2.8-12.oe1.aarch64.rpm ceph-fuse-12.2.8-12.oe1.aarch64.rpm librbd1-12.2.8-12.oe1.aarch64.rpm python3-cephfs-12.2.8-12.oe1.aarch64.rpm ceph-common-12.2.8-12.oe1.aarch64.rpm ceph-mds-12.2.8-12.oe1.aarch64.rpm libcephfs2-12.2.8-12.oe1.aarch64.rpm ceph-selinux-12.2.8-12.oe1.aarch64.rpm python-cephfs-12.2.8-12.oe1.aarch64.rpm ceph-resource-agents-12.2.8-12.oe1.aarch64.rpm libradosstriper-devel-12.2.8-12.oe1.aarch64.rpm librbd-devel-12.2.8-12.oe1.aarch64.rpm python3-rgw-12.2.8-12.oe1.aarch64.rpm python-rados-12.2.8-12.oe1.aarch64.rpm libcephfs-devel-12.2.8-12.oe1.aarch64.rpm rados-objclass-devel-12.2.8-12.oe1.aarch64.rpm python3-rados-12.2.8-12.oe1.aarch64.rpm python-rbd-12.2.8-12.oe1.aarch64.rpm python3-ceph-argparse-12.2.8-12.oe1.aarch64.rpm librados2-12.2.8-12.oe1.aarch64.rpm ceph-12.2.8-12.oe1.aarch64.rpm ceph-base-12.2.8-12.oe1.aarch64.rpm ceph-12.2.8-11.oe1.src.rpm ceph-12.2.8-12.oe1.src.rpm libradosstriper-devel-12.2.8-11.oe1.x86_64.rpm librbd-devel-12.2.8-11.oe1.x86_64.rpm python3-rgw-12.2.8-11.oe1.x86_64.rpm python-rados-12.2.8-11.oe1.x86_64.rpm libcephfs-devel-12.2.8-11.oe1.x86_64.rpm rados-objclass-devel-12.2.8-11.oe1.x86_64.rpm python3-rados-12.2.8-11.oe1.x86_64.rpm python-rbd-12.2.8-11.oe1.x86_64.rpm python3-ceph-argparse-12.2.8-11.oe1.x86_64.rpm librados2-12.2.8-11.oe1.x86_64.rpm ceph-12.2.8-11.oe1.x86_64.rpm ceph-base-12.2.8-11.oe1.x86_64.rpm librgw2-12.2.8-12.oe1.x86_64.rpm ceph-radosgw-12.2.8-12.oe1.x86_64.rpm librados-devel-12.2.8-12.oe1.x86_64.rpm ceph-osd-12.2.8-12.oe1.x86_64.rpm ceph-mgr-12.2.8-12.oe1.x86_64.rpm ceph-mon-12.2.8-12.oe1.x86_64.rpm rbd-mirror-12.2.8-12.oe1.x86_64.rpm librgw-devel-12.2.8-12.oe1.x86_64.rpm rbd-nbd-12.2.8-12.oe1.x86_64.rpm python3-rbd-12.2.8-12.oe1.x86_64.rpm libradosstriper1-12.2.8-12.oe1.x86_64.rpm ceph-debugsource-12.2.8-12.oe1.x86_64.rpm python-ceph-compat-12.2.8-12.oe1.x86_64.rpm ceph-test-12.2.8-12.oe1.x86_64.rpm rbd-fuse-12.2.8-12.oe1.x86_64.rpm python-rgw-12.2.8-12.oe1.x86_64.rpm ceph-debuginfo-12.2.8-12.oe1.x86_64.rpm ceph-fuse-12.2.8-12.oe1.x86_64.rpm librbd1-12.2.8-12.oe1.x86_64.rpm python3-cephfs-12.2.8-12.oe1.x86_64.rpm ceph-common-12.2.8-12.oe1.x86_64.rpm ceph-mds-12.2.8-12.oe1.x86_64.rpm libcephfs2-12.2.8-12.oe1.x86_64.rpm ceph-selinux-12.2.8-12.oe1.x86_64.rpm python-cephfs-12.2.8-12.oe1.x86_64.rpm ceph-resource-agents-12.2.8-12.oe1.x86_64.rpm libradosstriper-devel-12.2.8-12.oe1.x86_64.rpm librbd-devel-12.2.8-12.oe1.x86_64.rpm python3-rgw-12.2.8-12.oe1.x86_64.rpm python-rados-12.2.8-12.oe1.x86_64.rpm libcephfs-devel-12.2.8-12.oe1.x86_64.rpm rados-objclass-devel-12.2.8-12.oe1.x86_64.rpm python3-rados-12.2.8-12.oe1.x86_64.rpm python-rbd-12.2.8-12.oe1.x86_64.rpm python3-ceph-argparse-12.2.8-12.oe1.x86_64.rpm librados2-12.2.8-12.oe1.x86_64.rpm ceph-12.2.8-12.oe1.x86_64.rpm ceph-base-12.2.8-12.oe1.x86_64.rpm A flaw was found in ceph in versions prior to 16.y.z where ceph stores mgr module passwords in clear text. This can be found by searching the mgr logs for grafana and dashboard, with passwords visible. 2021-04-07 CVE-2020-25678 openEuler-20.03-LTS openEuler-20.03-LTS-SP1 Medium 4.9 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N ceph security update 2021-04-07 https://openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2021-1100