This bug was fixed in the package ceph - 14.2.9-0ubuntu0.19.10.1
---------------
ceph (14.2.9-0ubuntu0.19.10.1) eoan; urgency=medium
[ Tiago Pasqualini da Silva ]
* d/p/bug1867386: Cherry pick change that adds new configuration
option in RGW Beast frontend to allow tuning of maximum backlog
of pending connections (LP: #1867386).
[ James Page ]
* New upstream point release (LP: #1878146) including fixes for:
- CVE-2020-1759: Fixed nonce reuse in msgr V2 secure mode
- CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting
-- James Page <[email protected]> Thu, 21 May 2020 08:52:43 +0100
** Changed in: ceph (Ubuntu Eoan)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1878146
Title:
[SRU] ceph 14.2.9
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1878146/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
