vulnerability

CentOS Linux: CVE-2022-0670: Moderate: Red Hat Ceph Storage Security, Bug Fix, and Enhancement Update (CESA-2022:5997)

Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
2022-07-25
Added
2022-08-11
Modified
2025-01-28

Description

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.

Solution(s)

centos-upgrade-ceph-ansiblecentos-upgrade-ceph-basecentos-upgrade-ceph-base-debuginfocentos-upgrade-ceph-commoncentos-upgrade-ceph-common-debuginfocentos-upgrade-ceph-debugsourcecentos-upgrade-ceph-fusecentos-upgrade-ceph-fuse-debuginfocentos-upgrade-ceph-grafana-dashboardscentos-upgrade-ceph-immutable-object-cachecentos-upgrade-ceph-immutable-object-cache-debuginfocentos-upgrade-ceph-mdscentos-upgrade-ceph-mds-debuginfocentos-upgrade-ceph-mgr-debuginfocentos-upgrade-ceph-mibcentos-upgrade-ceph-mon-debuginfocentos-upgrade-ceph-osd-debuginfocentos-upgrade-ceph-radosgwcentos-upgrade-ceph-radosgw-debuginfocentos-upgrade-ceph-resource-agentscentos-upgrade-ceph-selinuxcentos-upgrade-ceph-test-debuginfocentos-upgrade-cephadmcentos-upgrade-cephadm-ansiblecentos-upgrade-cephfs-mirrorcentos-upgrade-cephfs-mirror-debuginfocentos-upgrade-cephfs-topcentos-upgrade-gperftools-debugsourcecentos-upgrade-gperftools-libscentos-upgrade-gperftools-libs-debuginfocentos-upgrade-leveldbcentos-upgrade-leveldb-debuginfocentos-upgrade-leveldb-debugsourcecentos-upgrade-libcephfs-develcentos-upgrade-libcephfs2centos-upgrade-libcephfs2-debuginfocentos-upgrade-libcephsqlite-debuginfocentos-upgrade-liboathcentos-upgrade-liboath-debuginfocentos-upgrade-libpskc-debuginfocentos-upgrade-librados-develcentos-upgrade-librados-devel-debuginfocentos-upgrade-libradospp-develcentos-upgrade-libradosstriper1centos-upgrade-libradosstriper1-debuginfocentos-upgrade-librbd-develcentos-upgrade-librgw-develcentos-upgrade-librgw2centos-upgrade-librgw2-debuginfocentos-upgrade-libunwindcentos-upgrade-libunwind-debuginfocentos-upgrade-libunwind-debugsourcecentos-upgrade-nfs-ganeshacentos-upgrade-nfs-ganesha-cephcentos-upgrade-nfs-ganesha-ceph-debuginfocentos-upgrade-nfs-ganesha-debuginfocentos-upgrade-nfs-ganesha-debugsourcecentos-upgrade-nfs-ganesha-proxycentos-upgrade-nfs-ganesha-proxy-debuginfocentos-upgrade-nfs-ganesha-rados-gracecentos-upgrade-nfs-ganesha-rados-grace-debuginfocentos-upgrade-nfs-ganesha-rados-urlscentos-upgrade-nfs-ganesha-rados-urls-debuginfocentos-upgrade-nfs-ganesha-rgwcentos-upgrade-nfs-ganesha-rgw-debuginfocentos-upgrade-nfs-ganesha-selinuxcentos-upgrade-nfs-ganesha-vfscentos-upgrade-nfs-ganesha-vfs-debuginfocentos-upgrade-oath-toolkit-debuginfocentos-upgrade-oath-toolkit-debugsourcecentos-upgrade-oathtool-debuginfocentos-upgrade-pam_oath-debuginfocentos-upgrade-pskctool-debuginfocentos-upgrade-python3-ceph-argparsecentos-upgrade-python3-ceph-commoncentos-upgrade-python3-cephfscentos-upgrade-python3-cephfs-debuginfocentos-upgrade-python3-radoscentos-upgrade-python3-rados-debuginfocentos-upgrade-python3-rbdcentos-upgrade-python3-rbd-debuginfocentos-upgrade-python3-rgwcentos-upgrade-python3-rgw-debuginfocentos-upgrade-rbd-fuse-debuginfocentos-upgrade-rbd-mirrorcentos-upgrade-rbd-mirror-debuginfocentos-upgrade-rbd-nbdcentos-upgrade-rbd-nbd-debuginfo
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.