Ubuntu
ceph package

  1. Bug #1867386
  2. Comment #10

Comment 10 for bug 1867386

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ceph - 14.2.9-0ubuntu0.19.10.1

---------------
ceph (14.2.9-0ubuntu0.19.10.1) eoan; urgency=medium

  [ Tiago Pasqualini da Silva ]
  * d/p/bug1867386: Cherry pick change that adds new configuration
    option in RGW Beast frontend to allow tuning of maximum backlog
    of pending connections (LP: #1867386).

  [ James Page ]
  * New upstream point release (LP: #1878146) including fixes for:
    - CVE-2020-1759: Fixed nonce reuse in msgr V2 secure mode
    - CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting

 -- James Page <email address hidden> Thu, 21 May 2020 08:52:43 +0100