SUSE-SU-2016:2809-1: moderate: Recommended update for ceph

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Tue Nov 15 14:06:58 MST 2016 

   SUSE Security Update: Recommended update for ceph
______________________________________________________________________________

Announcement ID:    SUSE-SU-2016:2809-1
Rating:             moderate
References:         #1005954 #982141 #985232 #987144 #987594 
                    #989512 #990438 #999688 
Cross-References:   CVE-2016-5009
Affected Products:
                    SUSE Enterprise Storage 3
______________________________________________________________________________

   An update that solves one vulnerability and has 7 fixes is
   now available.

Description:


   This update provides Ceph 10.2.3, which includes important bug fixes in
   RBD mirroring, RGW multi-site, CephFS, and RADOS.

   Build/OPS:

   - AArch64: Detect crc32 extension support from assembler. (bsc#999688)
   - Drop legacy ceph RA which doesn't work with systemd unit files.
   - The mount.ceph binary, which is used to mount CephFS pools, was moved to
     the ceph-common package so it can be run from any client.
   - Accept bcache devices as data disks and fix partprobe intermittent
     issues during ceph-disk prepare.

   CephFS:

   - Several bug fixes for improved stability.

   RBD:

   - A number of fixes for RBD mirroring.
   - Several bug fixes for improved stability.

   RADOS:

   - CVE-2016-5009: moncommand with empty prefix crashes monitor. (bsc#987144)
   - Backports of many asyncmsgr fixes to jewel.
   - Several bug fixes for improved OSD stability.
   - Fix for a C++ symbol visibility issue in librados.

   RGW:

   - Fixes for number of issues related to syncing between remote sites.
   - A number of other bug fixes, including fixes for:
      + IPv6
      + HTTPS/port 443 (bsc#990438)
      + radosgw-admin
      + Swift API
      + AWS4 API

   For a full list of issues fixed in this release, see:

       http://docs.ceph.com/docs/master/release-notes/#v10-2-3-jewel


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Enterprise Storage 3:

      zypper in -t patch SUSE-Storage-3-2016-1653=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Enterprise Storage 3 (aarch64 x86_64):

      ceph-10.2.3+git.1475228057.755cf99-7.3
      ceph-base-10.2.3+git.1475228057.755cf99-7.3
      ceph-base-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-common-10.2.3+git.1475228057.755cf99-7.3
      ceph-common-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-debugsource-10.2.3+git.1475228057.755cf99-7.3
      ceph-fuse-10.2.3+git.1475228057.755cf99-7.3
      ceph-fuse-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-mds-10.2.3+git.1475228057.755cf99-7.3
      ceph-mds-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-mon-10.2.3+git.1475228057.755cf99-7.3
      ceph-mon-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-osd-10.2.3+git.1475228057.755cf99-7.3
      ceph-osd-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      ceph-radosgw-10.2.3+git.1475228057.755cf99-7.3
      ceph-radosgw-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      libcephfs1-10.2.3+git.1475228057.755cf99-7.3
      libcephfs1-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      librados2-10.2.3+git.1475228057.755cf99-7.3
      librados2-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      libradosstriper1-10.2.3+git.1475228057.755cf99-7.3
      libradosstriper1-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      librbd1-10.2.3+git.1475228057.755cf99-7.3
      librbd1-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      librgw2-10.2.3+git.1475228057.755cf99-7.3
      librgw2-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      python-ceph-compat-10.2.3+git.1475228057.755cf99-7.3
      python-cephfs-10.2.3+git.1475228057.755cf99-7.3
      python-cephfs-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      python-rados-10.2.3+git.1475228057.755cf99-7.3
      python-rados-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      python-rbd-10.2.3+git.1475228057.755cf99-7.3
      python-rbd-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      rbd-fuse-10.2.3+git.1475228057.755cf99-7.3
      rbd-fuse-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      rbd-mirror-10.2.3+git.1475228057.755cf99-7.3
      rbd-mirror-debuginfo-10.2.3+git.1475228057.755cf99-7.3
      rbd-nbd-10.2.3+git.1475228057.755cf99-7.3
      rbd-nbd-debuginfo-10.2.3+git.1475228057.755cf99-7.3


References:

   https://www.suse.com/security/cve/CVE-2016-5009.html
   https://bugzilla.suse.com/1005954
   https://bugzilla.suse.com/982141
   https://bugzilla.suse.com/985232
   https://bugzilla.suse.com/987144
   https://bugzilla.suse.com/987594
   https://bugzilla.suse.com/989512
   https://bugzilla.suse.com/990438
   https://bugzilla.suse.com/999688

More information about the sle-security-updates mailing list