[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 6321-1] ceph security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6321-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
June 03, 2026                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : ceph
CVE ID         : CVE-2024-31884 CVE-2024-47866 CVE-2025-52555
Debian Bug     : 1108410 1120797 1126573

Multiple vulnerabilities were discovered in Ceph, a distributed storage
and file system, which may result in privilege escalation, denial of
service or information disclosure.

For the oldstable distribution (bookworm), these problems have been fixed
in version 16.2.15+ds-0+deb12u2.

For the stable distribution (trixie), these problems have been fixed in
version 18.2.7+ds-1+deb13u1.

We recommend that you upgrade your ceph packages.

For the detailed security status of ceph please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/ceph

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmogldRfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND
z0TOOw/9HDk4yonCUSZfi1+Sx/U2ReQSDmk84nhM7tsswCFLbs3ENozuIGW72L3i
bCEnzPlzn1n1sIao/7k5DHrSW7dNRMlVn+CGtqhU/wckH2WWj799YnEgtj9CELBB
yt3rggzIopmusVI9HZozMTa3YzbHZ/ZJqTQh6yQuhE1TKnTK4V8EkvBKhmnblOum
7tRRFfRKYkKFbtlUEfEtBVtlqJ4TuQ7ktzXktEAFSNrfkCoSW0y7kPh4KInCpT4n
QaQtRF4E9x774ZDb300HAe74zNBV5NcqbVyrwJngPiIaboCaEVbkuKWNkOVRTJBZ
EfhuOTzZAJZGv+VR4NrOXCFYXmiiY9mAiWp20aec2SmIgClsFmBYgRHfJ3JxK7rt
+IKy8u+p810J7uxHSNAl8+dBmeW6fVFsqcCra8AuY7oeurojeOy4W9yZg9YUXDZS
YuoB45zkv7lrmasTkDdAr1XemkPTMcalvIUxchqqBr/zqgI5/LkfECsdK/G4iL1n
PdK5xHHVRXqNMCgxZ3+8WE13Jj/MDJ56cylIQC/OTcfVjRcbPUUobI3lRoSOjyc+
rkVAvVcQquyWUMEhx0Z3dnaJnr8Vqb91Ifj4oQ+YLfKHy4141I5J4r7GxlTWIQxf
F1pfrNXCwehpSXScWtNlSL4eu9UC5giKDCySUz/r0FkDZLQhDg4=
=yDBu
-----END PGP SIGNATURE-----
Reply to: