[ubuntu/jammy-updates] ceph 17.2.7-0ubuntu0.22.04.2 (Accepted)

Mon Jan 6 15:30:35 UTC 2025

ceph (17.2.7-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Authentication bypass through unsupported JWT algorithm.
    - debian/patches/CVE-2024-48916.patch: Disallow unsupported JWT algorithms
      in src/rgw/rgw_rest_sts.cc.
    - CVE-2024-48916

Date: 2024-12-19 19:33:10.617009+00:00
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/ceph/17.2.7-0ubuntu0.22.04.2
-------------- next part --------------
Sorry, changesfile not available.