新支点安全公告

安全公告详情

NS-SA-2025-0247

2025-10-23 19:59:52

简介

important: ceph/glusterfs security update

严重级别

important

主题

An update for ceph/glusterfs is now available for NewStart CGSL MAIN 7.02.
NewStart Security has rated this update as having a security impact of important. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

详细描述

ceph:
glusterfs:

Security Fix(es):
ceph: A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump privileged information. This issue can lead to loss of confidentiality, integrity, and availability.(CVE-2022-3650)
ceph: bugfix
glusterfs: A flaw was found in Gluster, where GlusterFS is vulnerable to a denial of service caused by a stack-based buffer over-read flaw in xlators/mount/fuse/src/fuse-bridge.c. A remote attacker can cause the application to crash by sending a specially-crafted request.(CVE-2023-26253)
glusterfs: bugfix

Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 7.02.04B7.

影响组件

ceph
glusterfs

影响产品

CGSL MAIN 7.02

更新包

{"fix":[{"product":"CGSL MAIN 7.02","pkgs":[{"binary":["rados-objclass-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","rbd-fuse-17.2.5-5.zncgsl7.7.x86_64.rpm","rbd-mirror-17.2.5-5.zncgsl7.7.x86_64.rpm","rbd-nbd-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-rgw-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-rbd-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-rados-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-ceph-argparse-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-ceph-common-17.2.5-5.zncgsl7.7.x86_64.rpm","python3-cephfs-17.2.5-5.zncgsl7.7.x86_64.rpm","librgw-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","librgw2-17.2.5-5.zncgsl7.7.x86_64.rpm","librbd-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","libradosstriper-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","librbd1-17.2.5-5.zncgsl7.7.x86_64.rpm","libradosstriper1-17.2.5-5.zncgsl7.7.x86_64.rpm","libradospp-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","librados2-17.2.5-5.zncgsl7.7.x86_64.rpm","librados-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","libcephsqlite-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","libcephsqlite-17.2.5-5.zncgsl7.7.x86_64.rpm","libcephfs-devel-17.2.5-5.zncgsl7.7.x86_64.rpm","libcephfs2-17.2.5-5.zncgsl7.7.x86_64.rpm","cephfs-top-17.2.5-5.zncgsl7.7.noarch.rpm","cephfs-mirror-17.2.5-5.zncgsl7.7.x86_64.rpm","cephfs-shell-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-prometheus-alerts-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mgr-rook-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-resource-agents-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-volume-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mgr-k8sevents-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-selinux-17.2.5-5.zncgsl7.7.x86_64.rpm","cephadm-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mgr-cephadm-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mgr-modules-core-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mgr-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-grafana-dashboards-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-mon-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-mgr-dashboard-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-immutable-object-cache-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-exporter-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-mds-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-base-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-fuse-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-osd-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-mgr-diskprediction-local-17.2.5-5.zncgsl7.7.noarch.rpm","ceph-common-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-radosgw-17.2.5-5.zncgsl7.7.x86_64.rpm","ceph-test-17.2.5-5.zncgsl7.7.x86_64.rpm"],"source":"ceph-17.2.5-5.zncgsl7.7.src.rpm"},{"binary":["python3-gluster-8.2-20.zncgsl7.x86_64.rpm","libgfxdr0-8.2-20.zncgsl7.x86_64.rpm","libgfrpc-devel-8.2-20.zncgsl7.x86_64.rpm","libgfxdr-devel-8.2-20.zncgsl7.x86_64.rpm","libgfapi-devel-8.2-20.zncgsl7.x86_64.rpm","libgfrpc0-8.2-20.zncgsl7.x86_64.rpm","libgfchangelog-devel-8.2-20.zncgsl7.x86_64.rpm","libglusterd0-8.2-20.zncgsl7.x86_64.rpm","libglusterfs-devel-8.2-20.zncgsl7.x86_64.rpm","libgfchangelog0-8.2-20.zncgsl7.x86_64.rpm","libgfapi0-8.2-20.zncgsl7.x86_64.rpm","libglusterfs0-8.2-20.zncgsl7.x86_64.rpm","glusterfs-thin-arbiter-8.2-20.zncgsl7.x86_64.rpm","glusterfs-regression-tests-8.2-20.zncgsl7.x86_64.rpm","glusterfs-ganesha-8.2-20.zncgsl7.x86_64.rpm","glusterfs-server-8.2-20.zncgsl7.x86_64.rpm","glusterfs-extra-xlators-8.2-20.zncgsl7.x86_64.rpm","glusterfs-resource-agents-8.2-20.zncgsl7.noarch.rpm","glusterfs-geo-replication-8.2-20.zncgsl7.x86_64.rpm","glusterfs-cloudsync-plugins-8.2-20.zncgsl7.x86_64.rpm","glusterfs-fuse-8.2-20.zncgsl7.x86_64.rpm","glusterfs-cli-8.2-20.zncgsl7.x86_64.rpm","glusterfs-events-8.2-20.zncgsl7.x86_64.rpm","glusterfs-client-xlators-8.2-20.zncgsl7.x86_64.rpm","glusterfs-8.2-20.zncgsl7.x86_64.rpm"],"source":"glusterfs-8.2-20.zncgsl7.src.rpm"}]}]}

NS-SA-2025-0247

简介

严重级别

主题

详细描述

影响组件

影响产品

更新包

CVE

参考