CentOS Linux: CVE-2022-3650: Important: Red Hat Ceph Storage 5.3 Bug fix and security update (CESA-2023:0980)

CentOS Linux: CVE-2022-3650: Important: Red Hat Ceph Storage 5.3 Bug fix and security update (CESA-2023:0980)

Severity

7

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

01/17/2023

Created

03/02/2023

Added

03/01/2023

Modified

01/28/2025

Description

A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump privileged information.

Solution(s)

• centos-upgrade-ceph-base
• centos-upgrade-ceph-base-debuginfo
• centos-upgrade-ceph-common
• centos-upgrade-ceph-common-debuginfo
• centos-upgrade-ceph-debugsource
• centos-upgrade-ceph-fuse
• centos-upgrade-ceph-fuse-debuginfo
• centos-upgrade-ceph-grafana-dashboards
• centos-upgrade-ceph-immutable-object-cache
• centos-upgrade-ceph-immutable-object-cache-debuginfo
• centos-upgrade-ceph-mds
• centos-upgrade-ceph-mds-debuginfo
• centos-upgrade-ceph-mgr-debuginfo
• centos-upgrade-ceph-mib
• centos-upgrade-ceph-mon-debuginfo
• centos-upgrade-ceph-osd-debuginfo
• centos-upgrade-ceph-radosgw
• centos-upgrade-ceph-radosgw-debuginfo
• centos-upgrade-ceph-resource-agents
• centos-upgrade-ceph-selinux
• centos-upgrade-ceph-test-debuginfo
• centos-upgrade-cephadm
• centos-upgrade-cephadm-ansible
• centos-upgrade-cephfs-mirror
• centos-upgrade-cephfs-mirror-debuginfo
• centos-upgrade-cephfs-top
• centos-upgrade-libcephfs-devel
• centos-upgrade-libcephfs2
• centos-upgrade-libcephfs2-debuginfo
• centos-upgrade-libcephsqlite-debuginfo
• centos-upgrade-librados-devel
• centos-upgrade-librados-devel-debuginfo
• centos-upgrade-libradospp-devel
• centos-upgrade-libradosstriper1
• centos-upgrade-libradosstriper1-debuginfo
• centos-upgrade-librbd-devel
• centos-upgrade-librgw-devel
• centos-upgrade-librgw2
• centos-upgrade-librgw2-debuginfo
• centos-upgrade-python3-ceph-argparse
• centos-upgrade-python3-ceph-common
• centos-upgrade-python3-cephfs
• centos-upgrade-python3-cephfs-debuginfo
• centos-upgrade-python3-rados
• centos-upgrade-python3-rados-debuginfo
• centos-upgrade-python3-rbd
• centos-upgrade-python3-rbd-debuginfo
• centos-upgrade-python3-rgw
• centos-upgrade-python3-rgw-debuginfo
• centos-upgrade-rbd-fuse-debuginfo
• centos-upgrade-rbd-mirror
• centos-upgrade-rbd-mirror-debuginfo
• centos-upgrade-rbd-nbd
• centos-upgrade-rbd-nbd-debuginfo

References

• CVE-2022-3650