This update provides Ceph 10.2.10, which brings fixes and enhancements:
This security issue was fixed:
- CVE-2017-7519: libradosstriper processes arbitrary printf placeholders in user input. (bsc#1043767)
- CVE-2016-9579: Do not abort RGW server when accepting a CORS request with short origin. (bsc#1014986)
These non-security issues were fixed:
- common: Add rdbmap to ceph-common. (bsc#1029482)
- tools/rados: Default to include clone objects when executing 'cache-flush-evict-all'. (bsc#1003891)
- mon, ceph-disk: Add lockbox permissions to bootstrap-osd. (bsc#1008435)
- ceph_volume_client: Fix _recover_auth_meta() method. (bsc#1008501)
- systemd/ceph-disk: Reduce ceph-disk flock contention. (bsc#1012100)
- doc: Add verbiage to rbdmap manpage. (bsc#1015748)
- doc: Add Install section to systemd rbdmap.service file. (bsc#1015748)
- ceph systemd dependencies are wrong (bsc#1042973)
- ceph-disk omits '--runtime' when enabling ceph-osd units (was: ERROR: unable to open OSD superblock) (bsc#1051598)
- SES4: 23 osd's are down after patching node. (bsc#1056536)
- Invalid error code returned by MDS is causing a kernel client WARNING (bsc#1028109)
- systemctl stop rbdmap unmaps ALL rbds and not just the ones in /etc/ceph/rbdmap (bsc#1024691)
- documentation: man crushtool does not cover the '--show-mappings' parameter (bsc#1033786)
- swift | This returns with HTTP/1.1 401 Unauthorized (bsc#1015371)
- OSDs fail to start after server reboot (bsc#1025643)
- 'ceph-deploy mds destroy' not implemented (bsc#970642)