- What: Security update for Ceph in Debian
- Impact: Distributed storage systems may be vulnerable if not updated
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6321-1] ceph security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6321-1] ceph security update From: Salvatore Bonaccorso <carnil@debian.org> Date: Wed, 03 Jun 2026 21:17:44 +0000 Message-id: <[🔎] E1wUsy8-00000005hYA-0eYP@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6321-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso June 03, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : ceph CVE ID : CVE-2024-31884 CVE-2024-47866 CVE-2025-52555 Debian Bug : 1108410 1120797 1126573 Multiple vulnerabilities were discovered in Ceph, a distributed storage and file system, which may result in privilege escalation, denial of service or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 16.2.15+ds-0+deb12u2. For the stable distribution (trixie), these problems have been fixed in version 18.2.7+ds-1+deb13u1. We recommend that you upgrade your ceph packages. For the detailed security status of ceph please refer to its security tracker page at: https://security-tracker.debian.org/tracker/ceph Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmogldRfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0TOOw/9HDk4yonCUSZfi1+Sx/U2ReQSDmk84nhM7tsswCFLbs3ENozuIGW72L3i bCEnzPlzn1n1sIao/7k5DHrSW7dNRMlVn+CGtqhU/wckH2WWj799YnEgtj9CELBB yt3rggzIopmusVI9HZozMTa3YzbHZ/ZJqTQh6yQuhE1TKnTK4V8EkvBKhmnblOum 7tRRFfRKYkKFbtlUEfEtBVtlqJ4TuQ7ktzXktEAFSNrfkCoSW0y7kPh4KInCpT4n QaQtRF4E9x774ZDb300HAe74zNBV5NcqbVyrwJngPiIaboCaEVbkuKWNkOVRTJBZ EfhuOTzZAJZGv+VR4NrOXCFYXmiiY9mAiWp20aec2SmIgClsFmBYgRHfJ3JxK7rt +IKy8u+p810J7uxHSNAl8+dBmeW6fVFsqcCra8AuY7oeurojeOy4W9yZg9YUXDZS YuoB45zkv7lrmasTkDdAr1XemkPTMcalvIUxchqqBr/zqgI5/LkfECsdK/G4iL1n PdK5xHHVRXqNMCgxZ3+8WE13Jj/MDJ56cylIQC/OTcfVjRcbPUUobI3lRoSOjyc+ rkVAvVcQquyWUMEhx0Z3dnaJnr8Vqb91Ifj4oQ+YLfKHy4141I5J4r7GxlTWIQxf F1pfrNXCwehpSXScWtNlSL4eu9UC5giKDCySUz/r0FkDZLQhDg4= =yDBu -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Salvatore Bonaccorso (on-list) Salvatore Bonaccorso (off-list) Prev by Date: [SECURITY] [DSA 6320-1] php-twig security update Previous by thread: [SECURITY] [DSA 6320-1] php-twig security update Index(es): Date Thread