Security update for ceph SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:2049-1 Final 1 1 2019-08-05T15:56:32Z current 2019-08-05T15:56:32Z 2019-08-05T15:56:32Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ceph This update for ceph fixes the following issues: Security issues fixed: - CVE-2019-3821: civetweb: fix file descriptor leak (bsc#1125080) - CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth (bsc#1121567) Non-security issues fixed: - install grafana dashboards world readable (bsc#1136110) - upgrade results in cluster outage (bsc#1132396) - ceph status reports 'HEALTH_WARN 3 monitors have not enabled msgr2' (bsc#1124957) - Dashboard: Opening tcmu-runner perf counters results in a 404 (bsc#1135388) - RadosGW stopped expiring objects (bsc#1133139) - Ceph does not recover when rebuilding every OSD (bsc#1133461) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container caasp/v4/hyperkube:v1.17.17-2019-2049,SUSE-2019-2049,SUSE-SLE-Module-Basesystem-15-SP1-2019-2049,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2049,SUSE-Storage-6-2019-2049 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20192049-1/ Link for SUSE-SU-2019:2049-1 https://lists.suse.com/pipermail/sle-security-updates/2019-August/005774.html E-Mail link for SUSE-SU-2019:2049-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1121567 SUSE Bug 1121567 https://bugzilla.suse.com/1123360 SUSE Bug 1123360 https://bugzilla.suse.com/1124957 SUSE Bug 1124957 https://bugzilla.suse.com/1125080 SUSE Bug 1125080 https://bugzilla.suse.com/1125899 SUSE Bug 1125899 https://bugzilla.suse.com/1131984 SUSE Bug 1131984 https://bugzilla.suse.com/1132396 SUSE Bug 1132396 https://bugzilla.suse.com/1133139 SUSE Bug 1133139 https://bugzilla.suse.com/1133461 SUSE Bug 1133461 https://bugzilla.suse.com/1135030 SUSE Bug 1135030 https://bugzilla.suse.com/1135219 SUSE Bug 1135219 https://bugzilla.suse.com/1135221 SUSE Bug 1135221 https://bugzilla.suse.com/1135388 SUSE Bug 1135388 https://bugzilla.suse.com/1136110 SUSE Bug 1136110 https://www.suse.com/security/cve/CVE-2018-16889/ SUSE CVE CVE-2018-16889 page https://www.suse.com/security/cve/CVE-2019-3821/ SUSE CVE CVE-2019-3821 page Container caasp/v4/hyperkube:v1.17.17 SUSE Enterprise Storage 6 SUSE Linux Enterprise Module for Basesystem 15 SP1 ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 librados2-14.2.1.468+g994fd9e0cc-3.3.2 librbd1-14.2.1.468+g994fd9e0cc-3.3.2 librgw2-14.2.1.468+g994fd9e0cc-3.3.2 python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 ceph-14.2.1.468+g994fd9e0cc-3.3.2 ceph-base-14.2.1.468+g994fd9e0cc-3.3.2 ceph-fuse-14.2.1.468+g994fd9e0cc-3.3.2 ceph-grafana-dashboards-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mds-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-dashboard-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-diskprediction-cloud-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-diskprediction-local-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-rook-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mgr-ssh-14.2.1.468+g994fd9e0cc-3.3.2 ceph-mon-14.2.1.468+g994fd9e0cc-3.3.2 ceph-osd-14.2.1.468+g994fd9e0cc-3.3.2 ceph-prometheus-alerts-14.2.1.468+g994fd9e0cc-3.3.2 ceph-radosgw-14.2.1.468+g994fd9e0cc-3.3.2 ceph-test-14.2.1.468+g994fd9e0cc-3.3.2 cephfs-shell-14.2.1.468+g994fd9e0cc-3.3.2 libcephfs-devel-14.2.1.468+g994fd9e0cc-3.3.2 librados-devel-14.2.1.468+g994fd9e0cc-3.3.2 libradospp-devel-14.2.1.468+g994fd9e0cc-3.3.2 librbd-devel-14.2.1.468+g994fd9e0cc-3.3.2 librgw-devel-14.2.1.468+g994fd9e0cc-3.3.2 rados-objclass-devel-14.2.1.468+g994fd9e0cc-3.3.2 rbd-fuse-14.2.1.468+g994fd9e0cc-3.3.2 rbd-mirror-14.2.1.468+g994fd9e0cc-3.3.2 rbd-nbd-14.2.1.468+g994fd9e0cc-3.3.2 ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 librados2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 librbd1-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 librgw2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 as a component of Container caasp/v4/hyperkube:v1.17.17 ceph-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-base-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-fuse-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-grafana-dashboards-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mds-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mgr-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mgr-dashboard-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mgr-diskprediction-local-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mgr-rook-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-mon-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-osd-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-prometheus-alerts-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-radosgw-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 cephfs-shell-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 librados2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 librbd1-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 librgw2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 rbd-fuse-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 rbd-mirror-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 rbd-nbd-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Enterprise Storage 6 ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 libcephfs-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librados-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librados2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 libradospp-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librbd-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librbd1-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librgw-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 librgw2-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 rados-objclass-devel-14.2.1.468+g994fd9e0cc-3.3.2 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key information in log files via plaintext. Versions up to v13.2.4 are vulnerable. CVE-2018-16889 Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-base-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-fuse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-grafana-dashboards-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mds-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-dashboard-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-diskprediction-local-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-rook-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mon-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-osd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-prometheus-alerts-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-radosgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:cephfs-shell-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librados2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-fuse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-mirror-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-nbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libcephfs-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librados-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librados2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libradospp-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librbd-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librgw-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:rados-objclass-devel-14.2.1.468+g994fd9e0cc-3.3.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192049-1/ https://www.suse.com/security/cve/CVE-2018-16889.html CVE-2018-16889 https://bugzilla.suse.com/1121567 SUSE Bug 1121567 A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaust file descriptors for ceph-radosgw service resulting in a remote denial of service. CVE-2019-3821 Container caasp/v4/hyperkube:v1.17.17:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librados2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 Container caasp/v4/hyperkube:v1.17.17:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-base-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-fuse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-grafana-dashboards-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mds-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-dashboard-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-diskprediction-local-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mgr-rook-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-mon-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-osd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-prometheus-alerts-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:ceph-radosgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:cephfs-shell-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librados2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-fuse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-mirror-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Enterprise Storage 6:rbd-nbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:ceph-common-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libcephfs-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libcephfs2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librados-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librados2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:libradospp-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librbd-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librbd1-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librgw-devel-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:librgw2-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-ceph-argparse-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-cephfs-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rados-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rbd-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:python3-rgw-14.2.1.468+g994fd9e0cc-3.3.2 SUSE Linux Enterprise Module for Basesystem 15 SP1:rados-objclass-devel-14.2.1.468+g994fd9e0cc-3.3.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192049-1/ https://www.suse.com/security/cve/CVE-2019-3821.html CVE-2019-3821 https://bugzilla.suse.com/1125080 SUSE Bug 1125080