Not a user yet?
Log in Register for free Suggest a product
Update

USN-8045-1: Ceph vulnerabilities

Ubuntu DesktopUbuntu Desktop
Canonical

USN-8045-1: Ceph vulnerabilities

Publication date: 24 February 2026
Overview: Several security issues were fixed in Ceph.

Packages
ceph - distributed storage and file system

Details
Martin Schobert discovered that Ceph did not properly verify SSL
certificates when using Pybind for secure mail connections, which could
result in accepting invalid certificates. An attacker could possibly use
this issue to perform an intermediary attack and access mail server
credentials or message contents. This issue only affected Ubuntu 20.04 LTS,
Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. (CVE-2024-31884)

It was discovered that Ceph’s RADOS Gateway (RGW) did not properly handle
certain header parameters. An attacker could possibly use this issue to
cause the RGW service to crash, leading to a denial of service.
(CVE-2024-47866)

Update instructions
The problem can be corrected by updating your system to the following package versions:

25.10 questing

  • ceph – 19.2.3-0ubuntu1.25.10.3
  • ceph-base – 19.2.3-0ubuntu1.25.10.3
  • ceph-common – 19.2.3-0ubuntu1.25.10.3
  • ceph-exporter – 19.2.3-0ubuntu1.25.10.3
  • ceph-fuse – 19.2.3-0ubuntu1.25.10.3
  • ceph-grafana-dashboards – 19.2.3-0ubuntu1.25.10.3
  • ceph-immutable-object-cache – 19.2.3-0ubuntu1.25.10.3
  • ceph-mds – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-cephadm – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-dashboard – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-diskprediction-local – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-k8sevents – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-modules-core – 19.2.3-0ubuntu1.25.10.3
  • ceph-mgr-rook – 19.2.3-0ubuntu1.25.10.3
  • ceph-mon – 19.2.3-0ubuntu1.25.10.3
  • ceph-osd – 19.2.3-0ubuntu1.25.10.3
  • ceph-prometheus-alerts – 19.2.3-0ubuntu1.25.10.3
  • ceph-resource-agents – 19.2.3-0ubuntu1.25.10.3
  • ceph-volume – 19.2.3-0ubuntu1.25.10.3
  • cephadm – 19.2.3-0ubuntu1.25.10.3
  • cephfs-mirror – 19.2.3-0ubuntu1.25.10.3
  • cephfs-shell – 19.2.3-0ubuntu1.25.10.3
  • crimson-osd – 19.2.3-0ubuntu1.25.10.3
  • libcephfs-dev – 19.2.3-0ubuntu1.25.10.3
  • libcephfs-java – 19.2.3-0ubuntu1.25.10.3
  • libcephfs-jni – 19.2.3-0ubuntu1.25.10.3
  • libcephfs2 – 19.2.3-0ubuntu1.25.10.3
  • librados-dev – 19.2.3-0ubuntu1.25.10.3
  • librados2 – 19.2.3-0ubuntu1.25.10.3
  • libradospp-dev – 19.2.3-0ubuntu1.25.10.3
  • libradosstriper-dev – 19.2.3-0ubuntu1.25.10.3
  • libradosstriper1 – 19.2.3-0ubuntu1.25.10.3
  • librbd-dev – 19.2.3-0ubuntu1.25.10.3
  • librbd1 – 19.2.3-0ubuntu1.25.10.3
  • librgw-dev – 19.2.3-0ubuntu1.25.10.3
  • librgw2 – 19.2.3-0ubuntu1.25.10.3
  • libsqlite3-mod-ceph – 19.2.3-0ubuntu1.25.10.3
  • libsqlite3-mod-ceph-dev – 19.2.3-0ubuntu1.25.10.3
  • python3-ceph – 19.2.3-0ubuntu1.25.10.3
  • python3-ceph-argparse – 19.2.3-0ubuntu1.25.10.3
  • python3-ceph-common – 19.2.3-0ubuntu1.25.10.3
  • python3-cephfs – 19.2.3-0ubuntu1.25.10.3
  • python3-rados – 19.2.3-0ubuntu1.25.10.3
  • python3-rbd – 19.2.3-0ubuntu1.25.10.3
  • python3-rgw – 19.2.3-0ubuntu1.25.10.3
  • rados-objclass-dev – 19.2.3-0ubuntu1.25.10.3
  • radosgw – 19.2.3-0ubuntu1.25.10.3
  • rbd-fuse – 19.2.3-0ubuntu1.25.10.3
  • rbd-mirror – 19.2.3-0ubuntu1.25.10.3
  • rbd-nbd – 19.2.3-0ubuntu1.25.10.3
  • 24.04 LTS noble ceph – 19.2.3-0ubuntu0.24.04.3
  • ceph-base – 19.2.3-0ubuntu0.24.04.3
  • ceph-common – 19.2.3-0ubuntu0.24.04.3
  • ceph-fuse – 19.2.3-0ubuntu0.24.04.3
  • ceph-grafana-dashboards – 19.2.3-0ubuntu0.24.04.3
  • ceph-immutable-object-cache – 19.2.3-0ubuntu0.24.04.3
  • ceph-mds – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-cephadm – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-dashboard – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-diskprediction-local – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-k8sevents – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-modules-core – 19.2.3-0ubuntu0.24.04.3
  • ceph-mgr-rook – 19.2.3-0ubuntu0.24.04.3
  • ceph-mon – 19.2.3-0ubuntu0.24.04.3
  • ceph-osd – 19.2.3-0ubuntu0.24.04.3
  • ceph-prometheus-alerts – 19.2.3-0ubuntu0.24.04.3
  • ceph-resource-agents – 19.2.3-0ubuntu0.24.04.3
  • ceph-volume – 19.2.3-0ubuntu0.24.04.3
  • cephadm – 19.2.3-0ubuntu0.24.04.3
  • cephfs-mirror – 19.2.3-0ubuntu0.24.04.3
  • cephfs-shell – 19.2.3-0ubuntu0.24.04.3
  • crimson-osd – 19.2.3-0ubuntu0.24.04.3
  • libcephfs-dev – 19.2.3-0ubuntu0.24.04.3
  • libcephfs-java – 19.2.3-0ubuntu0.24.04.3
  • libcephfs-jni – 19.2.3-0ubuntu0.24.04.3
  • libcephfs2 – 19.2.3-0ubuntu0.24.04.3
  • librados-dev – 19.2.3-0ubuntu0.24.04.3
  • librados2 – 19.2.3-0ubuntu0.24.04.3
  • libradospp-dev – 19.2.3-0ubuntu0.24.04.3
  • libradosstriper-dev – 19.2.3-0ubuntu0.24.04.3
  • libradosstriper1 – 19.2.3-0ubuntu0.24.04.3
  • librbd-dev – 19.2.3-0ubuntu0.24.04.3
  • librbd1 – 19.2.3-0ubuntu0.24.04.3
  • librgw-dev – 19.2.3-0ubuntu0.24.04.3
  • librgw2 – 19.2.3-0ubuntu0.24.04.3
  • libsqlite3-mod-ceph – 19.2.3-0ubuntu0.24.04.3
  • libsqlite3-mod-ceph-dev – 19.2.3-0ubuntu0.24.04.3
  • python3-ceph – 19.2.3-0ubuntu0.24.04.3
  • python3-ceph-argparse – 19.2.3-0ubuntu0.24.04.3
  • python3-ceph-common – 19.2.3-0ubuntu0.24.04.3
  • python3-cephfs – 19.2.3-0ubuntu0.24.04.3
  • python3-rados – 19.2.3-0ubuntu0.24.04.3
  • python3-rbd – 19.2.3-0ubuntu0.24.04.3
  • python3-rgw – 19.2.3-0ubuntu0.24.04.3
  • rados-objclass-dev – 19.2.3-0ubuntu0.24.04.3
  • radosgw – 19.2.3-0ubuntu0.24.04.3
  • rbd-fuse – 19.2.3-0ubuntu0.24.04.3
  • rbd-mirror – 19.2.3-0ubuntu0.24.04.3
  • rbd-nbd – 19.2.3-0ubuntu0.24.04.3

22.04 LTS jammy

  • ceph – 17.2.9-0ubuntu0.22.04.2
  • ceph-base – 17.2.9-0ubuntu0.22.04.2
  • ceph-common – 17.2.9-0ubuntu0.22.04.2
  • ceph-fuse – 17.2.9-0ubuntu0.22.04.2
  • ceph-grafana-dashboards – 17.2.9-0ubuntu0.22.04.2
  • ceph-immutable-object-cache – 17.2.9-0ubuntu0.22.04.2
  • ceph-mds – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-cephadm – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-dashboard – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-diskprediction-local – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-k8sevents – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-modules-core – 17.2.9-0ubuntu0.22.04.2
  • ceph-mgr-rook – 17.2.9-0ubuntu0.22.04.2
  • ceph-mon – 17.2.9-0ubuntu0.22.04.2
  • ceph-osd – 17.2.9-0ubuntu0.22.04.2
  • ceph-prometheus-alerts – 17.2.9-0ubuntu0.22.04.2
  • ceph-resource-agents – 17.2.9-0ubuntu0.22.04.2
  • ceph-volume – 17.2.9-0ubuntu0.22.04.2
  • cephadm – 17.2.9-0ubuntu0.22.04.2
  • cephfs-mirror – 17.2.9-0ubuntu0.22.04.2
  • cephfs-shell – 17.2.9-0ubuntu0.22.04.2
  • crimson-osd – 17.2.9-0ubuntu0.22.04.2
  • libcephfs-dev – 17.2.9-0ubuntu0.22.04.2
  • libcephfs-java – 17.2.9-0ubuntu0.22.04.2
  • libcephfs-jni – 17.2.9-0ubuntu0.22.04.2
  • libcephfs2 – 17.2.9-0ubuntu0.22.04.2
  • librados-dev – 17.2.9-0ubuntu0.22.04.2
  • librados2 – 17.2.9-0ubuntu0.22.04.2
  • libradospp-dev – 17.2.9-0ubuntu0.22.04.2
  • libradosstriper-dev – 17.2.9-0ubuntu0.22.04.2
  • libradosstriper1 – 17.2.9-0ubuntu0.22.04.2
  • librbd-dev – 17.2.9-0ubuntu0.22.04.2
  • librbd1 – 17.2.9-0ubuntu0.22.04.2
  • librgw-dev – 17.2.9-0ubuntu0.22.04.2
  • librgw2 – 17.2.9-0ubuntu0.22.04.2
  • libsqlite3-mod-ceph – 17.2.9-0ubuntu0.22.04.2
  • libsqlite3-mod-ceph-dev – 17.2.9-0ubuntu0.22.04.2
  • python3-ceph – 17.2.9-0ubuntu0.22.04.2
  • python3-ceph-argparse – 17.2.9-0ubuntu0.22.04.2
  • python3-ceph-common – 17.2.9-0ubuntu0.22.04.2
  • python3-cephfs – 17.2.9-0ubuntu0.22.04.2
  • python3-rados – 17.2.9-0ubuntu0.22.04.2
  • python3-rbd – 17.2.9-0ubuntu0.22.04.2
  • python3-rgw – 17.2.9-0ubuntu0.22.04.2
  • rados-objclass-dev – 17.2.9-0ubuntu0.22.04.2
  • radosgw – 17.2.9-0ubuntu0.22.04.2
  • rbd-fuse – 17.2.9-0ubuntu0.22.04.2
  • rbd-mirror – 17.2.9-0ubuntu0.22.04.2
  • rbd-nbd – 17.2.9-0ubuntu0.22.04.2

20.04 LTS focal

  • ceph – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-base – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-common – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-fuse – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-immutable-object-cache – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mds – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-cephadm – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-dashboard – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-diskprediction-cloud – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-diskprediction-local – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-k8sevents – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-modules-core – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mgr-rook – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-mon – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-osd – 15.2.17-0ubuntu0.20.04.6+esm1
  • ceph-resource-agents – 15.2.17-0ubuntu0.20.04.6+esm1
  • cephadm – 15.2.17-0ubuntu0.20.04.6+esm1
  • cephfs-shell – 15.2.17-0ubuntu0.20.04.6+esm1
  • libcephfs-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • libcephfs-java – 15.2.17-0ubuntu0.20.04.6+esm1
  • libcephfs-jni – 15.2.17-0ubuntu0.20.04.6+esm1
  • libcephfs2 – 15.2.17-0ubuntu0.20.04.6+esm1
  • librados-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • librados2 – 15.2.17-0ubuntu0.20.04.6+esm1
  • libradospp-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • libradosstriper-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • libradosstriper1 – 15.2.17-0ubuntu0.20.04.6+esm1
  • librbd-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • librbd1 – 15.2.17-0ubuntu0.20.04.6+esm1
  • librgw-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • librgw2 – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-ceph – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-ceph-argparse – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-ceph-common – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-cephfs – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-rados – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-rbd – 15.2.17-0ubuntu0.20.04.6+esm1
  • python3-rgw – 15.2.17-0ubuntu0.20.04.6+esm1
  • rados-objclass-dev – 15.2.17-0ubuntu0.20.04.6+esm1
  • radosgw – 15.2.17-0ubuntu0.20.04.6+esm1
  • rbd-fuse – 15.2.17-0ubuntu0.20.04.6+esm1
  • rbd-mirror – 15.2.17-0ubuntu0.20.04.6+esm1
  • rbd-nbd – 15.2.17-0ubuntu0.20.04.6+esm1

18.04 LTS bionic

  • ceph – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-base – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-common – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-fuse – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-mds – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-mgr – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-mon – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-osd – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-resource-agents – 12.2.13-0ubuntu0.18.04.11+esm2
  • ceph-test – 12.2.13-0ubuntu0.18.04.11+esm2
  • libcephfs-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • libcephfs-java – 12.2.13-0ubuntu0.18.04.11+esm2
  • libcephfs-jni – 12.2.13-0ubuntu0.18.04.11+esm2
  • libcephfs2 – 12.2.13-0ubuntu0.18.04.11+esm2
  • librados-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • librados2 – 12.2.13-0ubuntu0.18.04.11+esm2
  • libradosstriper-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • libradosstriper1 – 12.2.13-0ubuntu0.18.04.11+esm2
  • librbd-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • librbd1 – 12.2.13-0ubuntu0.18.04.11+esm2
  • librgw-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • librgw2 – 12.2.13-0ubuntu0.18.04.11+esm2
  • python-ceph – 12.2.13-0ubuntu0.18.04.11+esm2
  • python-cephfs – 12.2.13-0ubuntu0.18.04.11+esm2
  • python-rados – 12.2.13-0ubuntu0.18.04.11+esm2
  • python-rbd – 12.2.13-0ubuntu0.18.04.11+esm2
  • python-rgw – 12.2.13-0ubuntu0.18.04.11+esm2
  • python3-ceph-argparse – 12.2.13-0ubuntu0.18.04.11+esm2
  • python3-cephfs – 12.2.13-0ubuntu0.18.04.11+esm2
  • python3-rados – 12.2.13-0ubuntu0.18.04.11+esm2
  • python3-rbd – 12.2.13-0ubuntu0.18.04.11+esm2
  • python3-rgw – 12.2.13-0ubuntu0.18.04.11+esm2
  • rados-objclass-dev – 12.2.13-0ubuntu0.18.04.11+esm2
  • radosgw – 12.2.13-0ubuntu0.18.04.11+esm2
  • rbd-fuse – 12.2.13-0ubuntu0.18.04.11+esm2
  • rbd-mirror – 12.2.13-0ubuntu0.18.04.11+esm2
  • rbd-nbd – 12.2.13-0ubuntu0.18.04.11+esm2

16.04 LTS xenial

  • ceph – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-common – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-fs-common – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-fuse – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-mds – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-resource-agents – 10.2.11-0ubuntu0.16.04.3+esm3
  • ceph-test – 10.2.11-0ubuntu0.16.04.3+esm3
  • libcephfs-dev – 10.2.11-0ubuntu0.16.04.3+esm3
  • libcephfs-java – 10.2.11-0ubuntu0.16.04.3+esm3
  • libcephfs-jni – 10.2.11-0ubuntu0.16.04.3+esm3
  • libcephfs1 – 10.2.11-0ubuntu0.16.04.3+esm3
  • librados-dev – 10.2.11-0ubuntu0.16.04.3+esm3
  • librados2 – 10.2.11-0ubuntu0.16.04.3+esm3
  • libradosstriper-dev – 10.2.11-0ubuntu0.16.04.3+esm3
  • libradosstriper1 – 10.2.11-0ubuntu0.16.04.3+esm3
  • librbd-dev – 10.2.11-0ubuntu0.16.04.3+esm3
  • librbd1 – 10.2.11-0ubuntu0.16.04.3+esm3
  • librgw-dev – 10.2.11-0ubuntu0.16.04.3+esm3
  • librgw2 – 10.2.11-0ubuntu0.16.04.3+esm3
  • python-ceph – 10.2.11-0ubuntu0.16.04.3+esm3
  • python-cephfs – 10.2.11-0ubuntu0.16.04.3+esm3
  • python-rados – 10.2.11-0ubuntu0.16.04.3+esm3
  • python-rbd – 10.2.11-0ubuntu0.16.04.3+esm3
  • radosgw – 10.2.11-0ubuntu0.16.04.3+esm3
  • rbd-fuse – 10.2.11-0ubuntu0.16.04.3+esm3
  • rbd-mirror – 10.2.11-0ubuntu0.16.04.3+esm3
  • rbd-nbd – 10.2.11-0ubuntu0.16.04.3+esm3

14.04 LTS trusty

  • ceph – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-common – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-fs-common – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-fuse – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-mds – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-resource-agents – 0.80.11-0ubuntu1.14.04.4+esm4
  • ceph-test – 0.80.11-0ubuntu1.14.04.4+esm4
  • libcephfs-dev – 0.80.11-0ubuntu1.14.04.4+esm4
  • libcephfs-java – 0.80.11-0ubuntu1.14.04.4+esm4
  • libcephfs-jni – 0.80.11-0ubuntu1.14.04.4+esm4
  • libcephfs1 – 0.80.11-0ubuntu1.14.04.4+esm4
  • librados-dev – 0.80.11-0ubuntu1.14.04.4+esm4
  • librados2 – 0.80.11-0ubuntu1.14.04.4+esm4
  • librbd-dev – 0.80.11-0ubuntu1.14.04.4+esm4
  • librbd1 – 0.80.11-0ubuntu1.14.04.4+esm4
  • python-ceph – 0.80.11-0ubuntu1.14.04.4+esm4
  • radosgw – 0.80.11-0ubuntu1.14.04.4+esm4
  • rbd-fuse – 0.80.11-0ubuntu1.14.04.4+esm4
  • rest-bench – 0.80.11-0ubuntu1.14.04.4+esm4
More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad