Malware Devil

Loading...

Friday, June 25, 2021

ESB-2021.2239 – [Ubuntu] Ceph: Multiple vulnerabilities

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.2239
USN-4998-1: Ceph vulnerabilities
25 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: Ceph
Publisher: Ubuntu
Operating System: Ubuntu
Impact/Access: Increased Privileges — Existing Account
Denial of Service — Remote/Unauthenticated
Cross-site Scripting — Remote with User Interaction
Access Confidential Data — Existing Account
Unauthorised Access — Existing Account
Reduced Security — Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2021-20288 CVE-2021-3531 CVE-2021-3524
CVE-2021-3509 CVE-2020-27839 CVE-2020-27781
CVE-2020-25678

Reference: ESB-2021.2133
ESB-2021.1505
ESB-2020.4539

Original Bulletin:
https://ubuntu.com/security/notices/USN-4998-1

– ————————–BEGIN INCLUDED TEXT——————–

USN-4998-1: Ceph vulnerabilities
25 June 2021

Several security issues were fixed in Ceph.
Releases

o Ubuntu 20.10
o Ubuntu 20.04 LTS

Packages

o ceph – distributed storage and file system

Details

It was discovered that in some situations Ceph logged passwords from the
mgr module in clear text. An attacker could use this to expose sensitive
information. ( CVE-2020-25678 )

Goutham Pacha Ravi, Jahson Babel, and John Garbutt discovered that user
credentials in Ceph could be manipulated in certain environments. An
attacker could use this to gain unintended access. ( CVE-2020-27781 )

It was discovered that the Ceph dashboard was susceptible to a cross-site
scripting attack. An attacker could use this to expose sensitive
information or gain unintended access. ( CVE-2020-27839 )

It was discovered that Ceph contained an authentication flaw, leading to
key reuse. An attacker could use this to cause a denial of service or
possibly impersonate another user. ( CVE-2021-20288 )

Sergey Bobrov discovered that the Ceph dashboard was susceptible to a
cross-site scripting attack. An attacker could use this to expose sensitive
information or gain unintended access. ( CVE-2021-3509 )

Sergey Bobrov discovered that Ceph’s RadosGW (Ceph Object Gateway) allowed
the injection of HTTP headers in responses to CORS requests. An attacker
could use this to violate system integrity. ( CVE-2021-3524 )

It was discovered that Ceph’s RadosGW (Ceph Object Gateway) did not
properly handle GET requests for swift URLs in some situations, leading to
an application crash. An attacker could use this to cause a denial of
service. ( CVE-2021-3531 )

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 20.10

o ceph-mgr-modules-core – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-cephadm – 15.2.12-0ubuntu0.20.10.1
o ceph – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-dashboard – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-rook – 15.2.12-0ubuntu0.20.10.1
o cephadm – 15.2.12-0ubuntu0.20.10.1
o radosgw – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-diskprediction-local – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-diskprediction-cloud – 15.2.12-0ubuntu0.20.10.1
o ceph-base – 15.2.12-0ubuntu0.20.10.1
o ceph-mgr-k8sevents – 15.2.12-0ubuntu0.20.10.1
o ceph-common – 15.2.12-0ubuntu0.20.10.1

Ubuntu 20.04

o ceph-mgr-modules-core – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-cephadm – 15.2.12-0ubuntu0.20.04.1
o ceph – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-dashboard – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-rook – 15.2.12-0ubuntu0.20.04.1
o cephadm – 15.2.12-0ubuntu0.20.04.1
o radosgw – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-diskprediction-local – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-diskprediction-cloud – 15.2.12-0ubuntu0.20.04.1
o ceph-base – 15.2.12-0ubuntu0.20.04.1
o ceph-mgr-k8sevents – 15.2.12-0ubuntu0.20.04.1
o ceph-common – 15.2.12-0ubuntu0.20.04.1

In general, a standard system update will make all the necessary changes.

References

o CVE-2021-3509
o CVE-2020-27839
o CVE-2021-20288
o CVE-2021-3524
o CVE-2020-25678
o CVE-2021-3531
o CVE-2020-27781

– ————————–END INCLUDED TEXT——————–

You have received this e-mail bulletin as a result of your organisation’s
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT’s members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation’s
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author’s website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
—–BEGIN PGP SIGNATURE—–
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBYNVl9eNLKJtyKPYoAQgJrg/+MqeKr2nH5WY+KU6cDVJ2JAreL2biwhRU
54ZjC49JnwHFimdu1sKWBP0Ljv8si2HkdqeHx074MRMhx5SIzQMD3h87ao+70pR/
kHm5RNZI3i4PsWPCrlZkR4YXNQO3b6TBrq39DTMhwYLJzcdxEqANGuJXjOKPOy9f
CyUSiIFjM5yFcNMTDBZeS/fmyTHlpAb9kXHZwbyBNbL8Lr6IRAnjHCZLoh0Vvb7x
ND1RFzaDvyyhvqWTLnb/PKGShcHxX74xylQJ+AfI6OmuIgNPipUjsIksUyGmjGsO
wX07TwQ9BG7nbEBU5MU9b3umPsh3WMRD4gjZ2pOmFtIyMzwmUO9SdYMsChL9bQk1
d8LajTvBCQVgIUNeeE/kty5sosRP5oBEnuWExNJCk41yvGpvCLg3GFWlsgnpjOH0
H1TKyVGPE8gFpb2mY2F/8DohhCAVdVDREXzP5Fhe2jGzOV7rjx3LO1yPs2v2YC6D
p1f5cYfxhZZTIGMERdVN4M6surjB1/U0Fd2UeXK2krAmJIJXHLW9TgPw2cxNfoxX
sKV5LauRRRma2hJClCrocxl6YtOnL7drLyzDbSjemfEIAnD95SJ5xqTl18D+mBDa
iG9Fj1Uf9SZf/Vllk4zDP8jFVAviKqAapU4rwP/XkRBAmhzNOe8pyBNTm45v1Tw9
mfXYnCJZvRw=
=XrfZ
—–END PGP SIGNATURE—–

Read More

The post ESB-2021.2239 – [Ubuntu] Ceph: Multiple vulnerabilities appeared first on Malware Devil.



https://malwaredevil.com/2021/06/25/esb-2021-2239-ubuntu-ceph-multiple-vulnerabilities/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-2239-ubuntu-ceph-multiple-vulnerabilities
at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Barbary Pirates and Russian Cybercrime

In 1801, the United States had a small Navy. Thomas Jefferson deployed almost half that Navy—three frigates and a schooner—to the Barbary C...