CVE-2021-20288
First published: Thu Mar 11 2021(Updated: )
An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests, it doesn't sanitize other_keys, allowing key reuse. An attacker who can request a global_id can exploit the ability of any user to request a global_id previously associated with another user, as ceph does not force the reuse of old keys to generate new ones. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/ceph | <14.2.20 | 14.2.20 |
| Linuxfoundation Ceph | <14.2.21 | |
| Redhat Ceph Storage | =4.0 | |
| Fedoraproject Fedora | =32 | |
| Fedoraproject Fedora | =33 | |
| Fedoraproject Fedora | =34 | |
| Debian Debian Linux | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=1938031
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/362CEPPYF3YMJZBEJQUT3KDE2EHYYIYQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5BPIAYTRCWAU4XWCDBK2THEFVXSC4XGK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JVWUKUUS5BCIFWRV3JCUQMAPJ4HIWSED/
- https://security.gentoo.org/glsa/202105-39
- https://lists.debian.org/debian-lts-announce/2023/10/msg00034.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/362CEPPYF3YMJZBEJQUT3KDE2EHYYIYQ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5BPIAYTRCWAU4XWCDBK2THEFVXSC4XGK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JVWUKUUS5BCIFWRV3JCUQMAPJ4HIWSED/
- https://github.com/ceph/ceph/commits/nautilus
- https://github.com/ceph/ceph/commits/octopus
- https://github.com/ceph/ceph/commits/pacific
- https://github.com/ceph/ceph/commit/f3a4166379b12d4a7bba667fe761e5b660552db1
- https://tracker.ceph.com/issues/50452
- https://tracker.ceph.com/issues/50453
- https://tracker.ceph.com/issues/50454
- https://tracker.ceph.com/issues/50455
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1952085
- https://access.redhat.com/errata/RHSA-2021:2445
- https://access.redhat.com/security/cve/cve-2021-20288
- https://access.redhat.com/errata/RHSA-2022:1394
Frequently Asked Questions
What is CVE-2021-20288?
CVE-2021-20288 is an authentication flaw found in ceph before version 14.2.20.
What is the severity of CVE-2021-20288?
The severity of CVE-2021-20288 is high with a CVSS score of 7.2.
How does CVE-2021-20288 impact Linuxfoundation Ceph?
CVE-2021-20288 affects Linuxfoundation Ceph versions before 14.2.20.
How does CVE-2021-20288 impact Red Hat Ceph Storage?
CVE-2021-20288 affects Red Hat Ceph Storage version 4.0.
How can I fix CVE-2021-20288?
To fix CVE-2021-20288, update ceph to version 14.2.20 or newer.
- collector/mitre-cve
- agent/author
- agent/type
- agent/event
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2021-20288
- agent/software-canonical-lookup
- agent/weakness
- agent/severity
- agent/remedy
- agent/references
- agent/description
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- package-manager/redhat
- vendor/linuxfoundation
- canonical/linuxfoundation ceph
- vendor/redhat
- canonical/redhat ceph storage
- version/redhat ceph storage/4.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/32
- version/fedoraproject fedora/33
- version/fedoraproject fedora/34
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0