SUSE-CU-2020:712-1: Security update of ses/7/cephcsi/cephcsi

sle-security-updates at sle-security-updates at
Fri Nov 27 00:06:58 MST 2020

SUSE Container Update Advisory: ses/7/cephcsi/cephcsi
Container Advisory ID : SUSE-CU-2020:712-1
Container Tags        : ses/7/cephcsi/cephcsi:3.1.1 , ses/7/cephcsi/cephcsi: , ses/7/cephcsi/cephcsi:latest , ses/7/cephcsi/cephcsi:sle15.2.octopus , ses/7/cephcsi/cephcsi:v3.1.1 , ses/7/cephcsi/cephcsi:v3.1.1.0
Container Release     : 3.66
Severity              : important
Type                  : security
References            : 1170200 1174466 1177344 1177843 1178073 1178531 CVE-2020-25660

The container ses/7/cephcsi/cephcsi was updated. The following patches have been included in this update:

Advisory ID: SUSE-RU-2020:3537-1
Released:    Thu Nov 26 15:25:38 2020
Summary:     Recommended update for ceph-csi
Type:        recommended
Severity:    moderate
This update for ceph-csi fixes the following issues:

- Use csi-attacher sidecar version v2.1.0 in helm charts due to build challenges with v2.1.1.
- Use upstream default CSI and sidecar versions in the helm charts. 
- Add examples directory into cephfs and rbd helm charts

Advisory ID: SUSE-SU-2020:3539-1
Released:    Thu Nov 26 15:52:34 2020
Summary:     Security update for ceph
Type:        security
Severity:    important
References:  1170200,1174466,1177344,1177843,1178073,1178531,CVE-2020-25660
This update for ceph fixes the following issues:

Security issue fixed:

- CVE-2020-25660: Bring back CEPHX_V2 authorizer challenges (bsc#1177843).

- mgr/dashboard: Fix for CrushMap viewer items getting compressed vertically (bsc#1170200)
- mon: have 'mon stat' output json as well (bsc#1174466)
- mgr/dashboard: support Orchestrator and user-defined Ganesha cluster (bsc#1177344)
- mgr/dashboard: fix downstream NFS doc links (bsc#1178073)
- cephadm: set default container_image to (bsc#1178531)

More information about the sle-security-updates mailing list