{"id":"OESA-2022-1528","summary":"ceph security update","details":"User space components of the Ceph file system.\r\n\r\nSecurity Fix(es):\r\n\r\nThe key length for encrypted devices created using ceph-volume is incorrect. This is due to a bug in ceph_volume/util/encryption.py, where upon writing a key using osd_dmcrypt_key_size it does not pass the key size to the format and open operations following. The default key is then applied in cryptsetup. All versions since Luminous are assumed affected.(CVE-2021-3979)","modified":"2025-09-03T06:17:37.036433Z","published":"2022-02-19T11:03:31Z","upstream":["CVE-2021-3979"],"database_specific":{"severity":"Medium"},"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1528"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3979"}],"affected":[{"package":{"name":"ceph","ecosystem":"openEuler:20.03-LTS-SP1","purl":"pkg:rpm/openEuler/ceph&distro=openEuler-20.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12.2.8-20.oe1"}]}],"ecosystem_specific":{"src":["ceph-12.2.8-20.oe1.src.rpm"],"x86_64":["librgw2-12.2.8-20.oe1.x86_64.rpm","ceph-test-12.2.8-20.oe1.x86_64.rpm","librbd1-12.2.8-20.oe1.x86_64.rpm","python3-ceph-argparse-12.2.8-20.oe1.x86_64.rpm","python3-rgw-12.2.8-20.oe1.x86_64.rpm","ceph-debugsource-12.2.8-20.oe1.x86_64.rpm","python-rados-12.2.8-20.oe1.x86_64.rpm","librados-devel-12.2.8-20.oe1.x86_64.rpm","python3-cephfs-12.2.8-20.oe1.x86_64.rpm","libcephfs2-12.2.8-20.oe1.x86_64.rpm","ceph-mds-12.2.8-20.oe1.x86_64.rpm","ceph-fuse-12.2.8-20.oe1.x86_64.rpm","ceph-base-12.2.8-20.oe1.x86_64.rpm","python3-rbd-12.2.8-20.oe1.x86_64.rpm","librbd-devel-12.2.8-20.oe1.x86_64.rpm","ceph-debuginfo-12.2.8-20.oe1.x86_64.rpm","libcephfs-devel-12.2.8-20.oe1.x86_64.rpm","rbd-nbd-12.2.8-20.oe1.x86_64.rpm","ceph-mon-12.2.8-20.oe1.x86_64.rpm","python3-rados-12.2.8-20.oe1.x86_64.rpm","python-cephfs-12.2.8-20.oe1.x86_64.rpm","ceph-resource-agents-12.2.8-20.oe1.x86_64.rpm","ceph-12.2.8-20.oe1.x86_64.rpm","ceph-osd-12.2.8-20.oe1.x86_64.rpm","ceph-common-12.2.8-20.oe1.x86_64.rpm","ceph-selinux-12.2.8-20.oe1.x86_64.rpm","python-rgw-12.2.8-20.oe1.x86_64.rpm","python-ceph-compat-12.2.8-20.oe1.x86_64.rpm","librados2-12.2.8-20.oe1.x86_64.rpm","libradosstriper1-12.2.8-20.oe1.x86_64.rpm","rbd-fuse-12.2.8-20.oe1.x86_64.rpm","ceph-mgr-12.2.8-20.oe1.x86_64.rpm","rbd-mirror-12.2.8-20.oe1.x86_64.rpm","rados-objclass-devel-12.2.8-20.oe1.x86_64.rpm","ceph-radosgw-12.2.8-20.oe1.x86_64.rpm","libradosstriper-devel-12.2.8-20.oe1.x86_64.rpm","librgw-devel-12.2.8-20.oe1.x86_64.rpm","python-rbd-12.2.8-20.oe1.x86_64.rpm"],"aarch64":["ceph-base-12.2.8-20.oe1.aarch64.rpm","python-rbd-12.2.8-20.oe1.aarch64.rpm","python3-rados-12.2.8-20.oe1.aarch64.rpm","librados2-12.2.8-20.oe1.aarch64.rpm","librgw-devel-12.2.8-20.oe1.aarch64.rpm","ceph-mds-12.2.8-20.oe1.aarch64.rpm","ceph-common-12.2.8-20.oe1.aarch64.rpm","ceph-mgr-12.2.8-20.oe1.aarch64.rpm","python-cephfs-12.2.8-20.oe1.aarch64.rpm","ceph-fuse-12.2.8-20.oe1.aarch64.rpm","ceph-debuginfo-12.2.8-20.oe1.aarch64.rpm","librbd1-12.2.8-20.oe1.aarch64.rpm","libcephfs-devel-12.2.8-20.oe1.aarch64.rpm","ceph-selinux-12.2.8-20.oe1.aarch64.rpm","python-rados-12.2.8-20.oe1.aarch64.rpm","librados-devel-12.2.8-20.oe1.aarch64.rpm","rados-objclass-devel-12.2.8-20.oe1.aarch64.rpm","python3-ceph-argparse-12.2.8-20.oe1.aarch64.rpm","python-ceph-compat-12.2.8-20.oe1.aarch64.rpm","python3-rbd-12.2.8-20.oe1.aarch64.rpm","libradosstriper-devel-12.2.8-20.oe1.aarch64.rpm","rbd-mirror-12.2.8-20.oe1.aarch64.rpm","python3-cephfs-12.2.8-20.oe1.aarch64.rpm","libradosstriper1-12.2.8-20.oe1.aarch64.rpm","ceph-osd-12.2.8-20.oe1.aarch64.rpm","python3-rgw-12.2.8-20.oe1.aarch64.rpm","python-rgw-12.2.8-20.oe1.aarch64.rpm","librgw2-12.2.8-20.oe1.aarch64.rpm","ceph-resource-agents-12.2.8-20.oe1.aarch64.rpm","rbd-nbd-12.2.8-20.oe1.aarch64.rpm","ceph-debugsource-12.2.8-20.oe1.aarch64.rpm","ceph-radosgw-12.2.8-20.oe1.aarch64.rpm","ceph-12.2.8-20.oe1.aarch64.rpm","ceph-mon-12.2.8-20.oe1.aarch64.rpm","ceph-test-12.2.8-20.oe1.aarch64.rpm","rbd-fuse-12.2.8-20.oe1.aarch64.rpm","librbd-devel-12.2.8-20.oe1.aarch64.rpm","libcephfs2-12.2.8-20.oe1.aarch64.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2022-1528.json"}},{"package":{"name":"ceph","ecosystem":"openEuler:20.03-LTS-SP2","purl":"pkg:rpm/openEuler/ceph&distro=openEuler-20.03-LTS-SP2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12.2.8-20.oe1"}]}],"ecosystem_specific":{"src":["ceph-12.2.8-20.oe1.src.rpm"],"x86_64":["ceph-resource-agents-12.2.8-20.oe1.x86_64.rpm","ceph-radosgw-12.2.8-20.oe1.x86_64.rpm","libcephfs-devel-12.2.8-20.oe1.x86_64.rpm","python-rgw-12.2.8-20.oe1.x86_64.rpm","ceph-debuginfo-12.2.8-20.oe1.x86_64.rpm","python3-cephfs-12.2.8-20.oe1.x86_64.rpm","ceph-12.2.8-20.oe1.x86_64.rpm","libradosstriper1-12.2.8-20.oe1.x86_64.rpm","ceph-mon-12.2.8-20.oe1.x86_64.rpm","libradosstriper-devel-12.2.8-20.oe1.x86_64.rpm","python3-ceph-argparse-12.2.8-20.oe1.x86_64.rpm","rbd-fuse-12.2.8-20.oe1.x86_64.rpm","ceph-osd-12.2.8-20.oe1.x86_64.rpm","python3-rgw-12.2.8-20.oe1.x86_64.rpm","ceph-base-12.2.8-20.oe1.x86_64.rpm","ceph-common-12.2.8-20.oe1.x86_64.rpm","ceph-test-12.2.8-20.oe1.x86_64.rpm","python-rbd-12.2.8-20.oe1.x86_64.rpm","librados2-12.2.8-20.oe1.x86_64.rpm","python-ceph-compat-12.2.8-20.oe1.x86_64.rpm","ceph-debugsource-12.2.8-20.oe1.x86_64.rpm","librgw-devel-12.2.8-20.oe1.x86_64.rpm","librbd-devel-12.2.8-20.oe1.x86_64.rpm","librgw2-12.2.8-20.oe1.x86_64.rpm","ceph-selinux-12.2.8-20.oe1.x86_64.rpm","rados-objclass-devel-12.2.8-20.oe1.x86_64.rpm","rbd-nbd-12.2.8-20.oe1.x86_64.rpm","rbd-mirror-12.2.8-20.oe1.x86_64.rpm","python3-rados-12.2.8-20.oe1.x86_64.rpm","librados-devel-12.2.8-20.oe1.x86_64.rpm","ceph-mgr-12.2.8-20.oe1.x86_64.rpm","libcephfs2-12.2.8-20.oe1.x86_64.rpm","python-rados-12.2.8-20.oe1.x86_64.rpm","ceph-mds-12.2.8-20.oe1.x86_64.rpm","ceph-fuse-12.2.8-20.oe1.x86_64.rpm","python3-rbd-12.2.8-20.oe1.x86_64.rpm","python-cephfs-12.2.8-20.oe1.x86_64.rpm","librbd1-12.2.8-20.oe1.x86_64.rpm"],"aarch64":["librgw2-12.2.8-20.oe1.aarch64.rpm","ceph-selinux-12.2.8-20.oe1.aarch64.rpm","librbd-devel-12.2.8-20.oe1.aarch64.rpm","ceph-12.2.8-20.oe1.aarch64.rpm","libcephfs2-12.2.8-20.oe1.aarch64.rpm","python3-rbd-12.2.8-20.oe1.aarch64.rpm","ceph-radosgw-12.2.8-20.oe1.aarch64.rpm","python3-cephfs-12.2.8-20.oe1.aarch64.rpm","rbd-fuse-12.2.8-20.oe1.aarch64.rpm","librbd1-12.2.8-20.oe1.aarch64.rpm","python-cephfs-12.2.8-20.oe1.aarch64.rpm","ceph-mds-12.2.8-20.oe1.aarch64.rpm","librgw-devel-12.2.8-20.oe1.aarch64.rpm","librados2-12.2.8-20.oe1.aarch64.rpm","libcephfs-devel-12.2.8-20.oe1.aarch64.rpm","librados-devel-12.2.8-20.oe1.aarch64.rpm","rbd-mirror-12.2.8-20.oe1.aarch64.rpm","rados-objclass-devel-12.2.8-20.oe1.aarch64.rpm","python3-rados-12.2.8-20.oe1.aarch64.rpm","ceph-base-12.2.8-20.oe1.aarch64.rpm","ceph-resource-agents-12.2.8-20.oe1.aarch64.rpm","ceph-fuse-12.2.8-20.oe1.aarch64.rpm","python-ceph-compat-12.2.8-20.oe1.aarch64.rpm","rbd-nbd-12.2.8-20.oe1.aarch64.rpm","python-rgw-12.2.8-20.oe1.aarch64.rpm","ceph-mon-12.2.8-20.oe1.aarch64.rpm","ceph-mgr-12.2.8-20.oe1.aarch64.rpm","libradosstriper-devel-12.2.8-20.oe1.aarch64.rpm","ceph-debugsource-12.2.8-20.oe1.aarch64.rpm","ceph-common-12.2.8-20.oe1.aarch64.rpm","python-rbd-12.2.8-20.oe1.aarch64.rpm","python-rados-12.2.8-20.oe1.aarch64.rpm","ceph-test-12.2.8-20.oe1.aarch64.rpm","python3-ceph-argparse-12.2.8-20.oe1.aarch64.rpm","python3-rgw-12.2.8-20.oe1.aarch64.rpm","libradosstriper1-12.2.8-20.oe1.aarch64.rpm","ceph-debuginfo-12.2.8-20.oe1.aarch64.rpm","ceph-osd-12.2.8-20.oe1.aarch64.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2022-1528.json"}},{"package":{"name":"ceph","ecosystem":"openEuler:20.03-LTS-SP3","purl":"pkg:rpm/openEuler/ceph&distro=openEuler-20.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"12.2.8-20.oe1"}]}],"ecosystem_specific":{"src":["ceph-12.2.8-20.oe1.src.rpm"],"x86_64":["librbd1-12.2.8-20.oe1.x86_64.rpm","rbd-fuse-12.2.8-20.oe1.x86_64.rpm","ceph-test-12.2.8-20.oe1.x86_64.rpm","librados-devel-12.2.8-20.oe1.x86_64.rpm","ceph-resource-agents-12.2.8-20.oe1.x86_64.rpm","ceph-mgr-12.2.8-20.oe1.x86_64.rpm","python-ceph-compat-12.2.8-20.oe1.x86_64.rpm","libradosstriper1-12.2.8-20.oe1.x86_64.rpm","librgw2-12.2.8-20.oe1.x86_64.rpm","ceph-debugsource-12.2.8-20.oe1.x86_64.rpm","rbd-mirror-12.2.8-20.oe1.x86_64.rpm","ceph-mon-12.2.8-20.oe1.x86_64.rpm","ceph-radosgw-12.2.8-20.oe1.x86_64.rpm","python-rbd-12.2.8-20.oe1.x86_64.rpm","rbd-nbd-12.2.8-20.oe1.x86_64.rpm","ceph-selinux-12.2.8-20.oe1.x86_64.rpm","rados-objclass-devel-12.2.8-20.oe1.x86_64.rpm","librgw-devel-12.2.8-20.oe1.x86_64.rpm","ceph-fuse-12.2.8-20.oe1.x86_64.rpm","python-rados-12.2.8-20.oe1.x86_64.rpm","python3-cephfs-12.2.8-20.oe1.x86_64.rpm","python3-ceph-argparse-12.2.8-20.oe1.x86_64.rpm","ceph-base-12.2.8-20.oe1.x86_64.rpm","python3-rados-12.2.8-20.oe1.x86_64.rpm","ceph-debuginfo-12.2.8-20.oe1.x86_64.rpm","ceph-12.2.8-20.oe1.x86_64.rpm","python3-rgw-12.2.8-20.oe1.x86_64.rpm","ceph-common-12.2.8-20.oe1.x86_64.rpm","librbd-devel-12.2.8-20.oe1.x86_64.rpm","libcephfs-devel-12.2.8-20.oe1.x86_64.rpm","ceph-osd-12.2.8-20.oe1.x86_64.rpm","libcephfs2-12.2.8-20.oe1.x86_64.rpm","librados2-12.2.8-20.oe1.x86_64.rpm","libradosstriper-devel-12.2.8-20.oe1.x86_64.rpm","python-rgw-12.2.8-20.oe1.x86_64.rpm","ceph-mds-12.2.8-20.oe1.x86_64.rpm","python-cephfs-12.2.8-20.oe1.x86_64.rpm","python3-rbd-12.2.8-20.oe1.x86_64.rpm"],"aarch64":["ceph-debuginfo-12.2.8-20.oe1.aarch64.rpm","ceph-mgr-12.2.8-20.oe1.aarch64.rpm","ceph-test-12.2.8-20.oe1.aarch64.rpm","librados-devel-12.2.8-20.oe1.aarch64.rpm","ceph-osd-12.2.8-20.oe1.aarch64.rpm","python-rados-12.2.8-20.oe1.aarch64.rpm","ceph-radosgw-12.2.8-20.oe1.aarch64.rpm","python-rgw-12.2.8-20.oe1.aarch64.rpm","ceph-fuse-12.2.8-20.oe1.aarch64.rpm","ceph-12.2.8-20.oe1.aarch64.rpm","ceph-base-12.2.8-20.oe1.aarch64.rpm","ceph-mds-12.2.8-20.oe1.aarch64.rpm","rados-objclass-devel-12.2.8-20.oe1.aarch64.rpm","libcephfs2-12.2.8-20.oe1.aarch64.rpm","librados2-12.2.8-20.oe1.aarch64.rpm","libcephfs-devel-12.2.8-20.oe1.aarch64.rpm","librbd-devel-12.2.8-20.oe1.aarch64.rpm","python-ceph-compat-12.2.8-20.oe1.aarch64.rpm","rbd-mirror-12.2.8-20.oe1.aarch64.rpm","python-cephfs-12.2.8-20.oe1.aarch64.rpm","python3-rados-12.2.8-20.oe1.aarch64.rpm","libradosstriper1-12.2.8-20.oe1.aarch64.rpm","librgw2-12.2.8-20.oe1.aarch64.rpm","ceph-common-12.2.8-20.oe1.aarch64.rpm","rbd-fuse-12.2.8-20.oe1.aarch64.rpm","python-rbd-12.2.8-20.oe1.aarch64.rpm","python3-ceph-argparse-12.2.8-20.oe1.aarch64.rpm","python3-rgw-12.2.8-20.oe1.aarch64.rpm","ceph-debugsource-12.2.8-20.oe1.aarch64.rpm","python3-cephfs-12.2.8-20.oe1.aarch64.rpm","librgw-devel-12.2.8-20.oe1.aarch64.rpm","ceph-resource-agents-12.2.8-20.oe1.aarch64.rpm","ceph-selinux-12.2.8-20.oe1.aarch64.rpm","rbd-nbd-12.2.8-20.oe1.aarch64.rpm","libradosstriper-devel-12.2.8-20.oe1.aarch64.rpm","ceph-mon-12.2.8-20.oe1.aarch64.rpm","python3-rbd-12.2.8-20.oe1.aarch64.rpm","librbd1-12.2.8-20.oe1.aarch64.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2022-1528.json"}}],"schema_version":"1.7.3"}