Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-1129

A flaw was found in the way signature calculation was handled by cephx authentication protocol. An attacker having access to ceph cluster network who is able to alter the message payload was able to bypass signature checks done by cephx protocol. Ceph branches master, mimic, luminous and jewel are believed to be vulnerable.

Published

2018-07-10T14:29:00.417

Last Modified

2024-11-21T03:59:15.087

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:P/A:N

Access Vector: ADJACENT_NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

6.5

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-284
Type: Primary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	redhat	ceph_storage	1.3	Yes
Application	redhat	ceph_storage	3	Yes
Application	redhat	ceph_storage_mon	2	Yes
Application	redhat	ceph_storage_mon	3	Yes
Application	redhat	ceph_storage_osd	2	Yes
Application	redhat	ceph_storage_osd	3	Yes
Operating System	redhat	enterprise_linux	7.0	Yes
Operating System	redhat	enterprise_linux_desktop	7.0	Yes
Operating System	redhat	enterprise_linux_server	7.0	Yes
Operating System	redhat	enterprise_linux_workstation	7.0	Yes
Application	ceph	ceph	10.2.0	Yes
Application	ceph	ceph	10.2.1	Yes
Application	ceph	ceph	10.2.2	Yes
Application	ceph	ceph	10.2.3	Yes
Application	ceph	ceph	10.2.4	Yes
Application	ceph	ceph	10.2.5	Yes
Application	ceph	ceph	10.2.6	Yes
Application	ceph	ceph	10.2.7	Yes
Application	ceph	ceph	10.2.8	Yes
Application	ceph	ceph	10.2.9	Yes
Application	ceph	ceph	10.2.10	Yes
Application	ceph	ceph	10.2.11	Yes
Application	ceph	ceph	12.2.0	Yes
Application	ceph	ceph	12.2.1	Yes
Application	ceph	ceph	12.2.2	Yes
Application	ceph	ceph	12.2.3	Yes
Application	ceph	ceph	12.2.4	Yes
Application	ceph	ceph	12.2.5	Yes
Application	ceph	ceph	12.2.6	Yes
Application	ceph	ceph	12.2.7	Yes
Application	ceph	ceph	13.2.0	Yes
Application	ceph	ceph	13.2.1	Yes
Operating System	debian	debian_linux	8.0	Yes
Operating System	debian	debian_linux	9.0	Yes
Operating System	opensuse	leap	15.0	Yes

References

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html Third Party Advisory ([email protected])
http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html ([email protected])
http://tracker.ceph.com/issues/24837 Issue Tracking, Vendor Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2177 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2179 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2261 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:2274 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1576057 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/ceph/ceph/commit/8f396cf35a3826044b089141667a196454c0a587 Patch, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html Mailing List, Third Party Advisory ([email protected])
https://www.debian.org/security/2018/dsa-4339 Third Party Advisory ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/154245/Kernel-Live-Patch-Security-Notice-LSN-0054-1.html (af854a3a-2127-422b-91ae-364da2661108)
http://tracker.ceph.com/issues/24837 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2177 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2179 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2261 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:2274 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=1576057 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/ceph/ceph/commit/8f396cf35a3826044b089141667a196454c0a587 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2018/dsa-4339 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)