ELA-1000-1 ceph security update

Debian 9937 Published 2023-11-17 07:52 by Philipp Esselbach

News

A ceph security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address a flaw was found in Ceph RGW component.

ELA-1000-1 ceph security update
Package : ceph
Version : 0.80.7-2+deb8u6 (jessie), 10.2.11-2+deb9u2 (stretch)

Related CVEs :
CVE-2023-43040

A flaw was found in Ceph RGW component. An unprivileged user can write to any bucket(s) accessible by a given key if a POST’s form-data contains a key called “bucket” with a value matching the name of the bucket used to sign the request. The result of this is that a user could actually upload to any bucket accessible by the specified access key as long as the bucket in the POST policy matches the bucket in said POST form part.
ELA-1000-1 ceph security update

USN-6485-1: Intel Microcode vulnerability

PowerShell 7.4 released

Windows

Software 42354
WSL2 Distro Manager 1.8.14 released
2024-05-17 05:30 by Philipp Esselbach
Drivers 2882
AMD Radeon Software Adrenalin 24.5.1 released
2024-05-16 09:11 by Philipp Esselbach
Windows 11 415
Windows 11 Insider Preview Build 26217 (Canary Channel) released
2024-05-15 22:31 by Philipp Esselbach

Linux

GNOME 3594
GNOME 47 Release Schedule available
2024-05-17 07:34 by Philipp Esselbach
Software 42354
AM 6.7.1 released
2024-05-17 07:26 by Philipp Esselbach
Debian 9937
Firefox-ESR security update for Debian 10
2024-05-17 07:14 by Philipp Esselbach

macOS

Apple 10169
tvOS 17.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
HomePod Software 17.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
watchOS 10.5 released
2024-05-14 07:14 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...