Home

CVE-2018-1129

Description

A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.

Risk Information

Base Score
6.4
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.404

Associated Vulnerability

VulnerabilityOS Platform
ceph security update(DSA-4339-1) ceph_10.2.11-1_amd64.debLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-ansible-3.0.39-1.el7cp.noarch.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-base-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-common-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-fuse-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-mds-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-radosgw-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update ceph-selinux-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update libcephfs1-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update libcephfs1-devel-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librados2-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librados2-devel-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librbd1-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librbd1-devel-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librgw2-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update librgw2-devel-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update python-cephfs-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update python-rados-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update python-rbd-10.2.10-28.el7cp.x86_64.rpmLinux
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update rbd-mirror-10.2.10-28.el7cp.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) ceph-common-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) ceph-debugsource-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) libcephfs2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librados2-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librados2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) libradosstriper1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librbd1-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librbd1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librgw2-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) librgw2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-cephfs-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rados-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rados-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rbd-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux
SUSE-SU-2018:2193-1(SUSE Linux Enterprise Desktop 12-SP3 ) python-rgw-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234