Bug #50452: CVE-2021-20288: Unauthorized global_id reuse in cephx - Ceph - Ceph

Bug #50452

CVE-2021-20288: Unauthorized global_id reuse in cephx

Added by Loïc Dachary over 2 years ago. Updated over 2 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Ilya Dryomov

Category:

Target version:

% Done:

Source:

Tags:

Backport:

pacific, octopus, nautilus

Regression:

Severity:

3 - minor

Reviewed:

Affected Versions:

ceph-qa-suite:

Pull request ID:

Crash signature (v1):

Crash signature (v2):

Description

https://docs.ceph.com/en/latest/security/CVE-2021-20288/

https://github.com/ceph/ceph/compare/cbc7f727842f93130fcfbbad64de0959ee4a02d3...f3a4166379b12d4a7bba667fe761e5b660552db1
https://github.com/ceph/ceph/pull/40870

Related issues

History

#1 Updated by Backport Bot over 2 years ago

Copied to Backport #50453: pacific: CVE-2021-20288: Unauthorized global_id reuse in cephx added

#2 Updated by Backport Bot over 2 years ago

Copied to Backport #50454: octopus: CVE-2021-20288: Unauthorized global_id reuse in cephx added

#3 Updated by Backport Bot over 2 years ago

Copied to Backport #50455: nautilus: CVE-2021-20288: Unauthorized global_id reuse in cephx added

#4 Updated by Loïc Dachary over 2 years ago

Description updated (diff)

#5 Updated by Loïc Dachary over 2 years ago

Status changed from Pending Backport to Resolved

#6 Updated by Ilya Dryomov over 2 years ago

Description updated (diff)

Also available in: Atom PDF

Project

General

Profile

Ceph

Issues

Tags

Custom queries