vulnerability

SUSE: CVE-2022-0670: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:N/C:C/I:C/A:N)	2022-07-25	2023-03-28	2025-01-28

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:N)

Published

2022-07-25

Added

2023-03-28

Modified

2025-01-28

Description

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2.

Solution(s)

suse-upgrade-cephsuse-upgrade-ceph-basesuse-upgrade-ceph-commonsuse-upgrade-ceph-fusesuse-upgrade-ceph-grafana-dashboardssuse-upgrade-ceph-immutable-object-cachesuse-upgrade-ceph-mdssuse-upgrade-ceph-mgrsuse-upgrade-ceph-mgr-cephadmsuse-upgrade-ceph-mgr-dashboardsuse-upgrade-ceph-mgr-diskprediction-localsuse-upgrade-ceph-mgr-k8seventssuse-upgrade-ceph-mgr-modules-coresuse-upgrade-ceph-mgr-rooksuse-upgrade-ceph-monsuse-upgrade-ceph-osdsuse-upgrade-ceph-prometheus-alertssuse-upgrade-ceph-radosgwsuse-upgrade-ceph-testsuse-upgrade-cephadmsuse-upgrade-cephfs-mirrorsuse-upgrade-cephfs-shellsuse-upgrade-cephfs-topsuse-upgrade-libcephfs-develsuse-upgrade-libcephfs2suse-upgrade-libcephsqlitesuse-upgrade-libcephsqlite-develsuse-upgrade-librados-develsuse-upgrade-librados2suse-upgrade-libradospp-develsuse-upgrade-librbd-develsuse-upgrade-librbd1suse-upgrade-librgw-develsuse-upgrade-librgw2suse-upgrade-python3-ceph-argparsesuse-upgrade-python3-ceph-commonsuse-upgrade-python3-cephfssuse-upgrade-python3-radossuse-upgrade-python3-rbdsuse-upgrade-python3-rgwsuse-upgrade-rados-objclass-develsuse-upgrade-rbd-fusesuse-upgrade-rbd-mirrorsuse-upgrade-rbd-nbd

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today