subject:"Bug#918969\: ceph\: CVE\-2018\-16889\: debug logging for v4 auth does not sanitize encryption keys"

Bug#918969: ceph: CVE-2018-16889: debug logging for v4 auth does not sanitize encryption keys

2019-02-10 Thread Moritz Mühlenhoff

On Fri, Jan 11, 2019 at 09:03:37AM +0100, Salvatore Bonaccorso wrote: > Source: ceph > Version: 12.2.10+dfsg1-1 > Severity: important > Tags: patch security upstream > Forwarded: http://tracker.ceph.com/issues/37847 > > Hi, > > The following vulnerability was published for ceph. > >

Bug#918969: ceph: CVE-2018-16889: debug logging for v4 auth does not sanitize encryption keys

2019-01-11 Thread Salvatore Bonaccorso

Source: ceph Version: 12.2.10+dfsg1-1 Severity: important Tags: patch security upstream Forwarded: http://tracker.ceph.com/issues/37847 Hi, The following vulnerability was published for ceph. CVE-2018-16889[0]: debug logging for v4 auth does not sanitize encryption keys If you fix the