{"id":"RHSA-2020:3504","summary":"Red Hat Security Advisory: Red Hat Ceph Storage 3.3 security and bug fix update","modified":"2026-02-24T10:03:48Z","published":"2024-09-13T22:07:08Z","upstream":["CVE-2020-10753"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:3504"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1821133"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1831740"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840744"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1846830"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847644"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848134"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1849478"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1850377"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1853057"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1853457"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1855384"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1855881"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856100"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1858733"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862046"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866252"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3504.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-10753"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-10753"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-10753"},{"type":"ARTICLE","url":"https://ceph.io/releases/v14-2-10-nautilus-released/"}],"affected":[{"package":{"name":"ceph","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-base","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-common","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-debuginfo","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-fuse","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-fuse"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-mds","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-mds"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-mgr","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-mgr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-mon","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-mon"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-osd","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-osd"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-radosgw","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-radosgw"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-selinux","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-selinux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-test","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"libcephfs-devel","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/libcephfs-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"libcephfs2","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/libcephfs2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librados-devel","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librados-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librados2","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librados2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"libradosstriper1","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/libradosstriper1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librbd-devel","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librbd-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librbd1","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librbd1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librgw-devel","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librgw-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"librgw2","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/librgw2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"python-cephfs","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/python-cephfs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"python-rados","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/python-rados"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"python-rbd","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/python-rbd"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"python-rgw","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/python-rgw"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"rbd-mirror","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/rbd-mirror"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:12.2.12-124.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"ceph-ansible","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/ceph-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.48-1.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"nfs-ganesha","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/nfs-ganesha"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.4-13.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"nfs-ganesha-ceph","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/nfs-ganesha-ceph"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.4-13.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"nfs-ganesha-debuginfo","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/nfs-ganesha-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.4-13.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"nfs-ganesha-rgw","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/nfs-ganesha-rgw"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.4-13.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}},{"package":{"name":"nfs-ganesha-selinux","ecosystem":"Red Hat:ceph_storage:3::el7","purl":"pkg:rpm/redhat/nfs-ganesha-selinux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.4-13.el7cp"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:3504.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}]}