RepoMirrors/ceph
1
0
Fork 0
mirror of https://github.com/ceph/ceph synced 2025-01-14 06:53:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #38618 from neha-ojha/wip-14-2-16

Browse Source 
doc/releases/nautilus.rst: add release notes for 14.2.16

Reviewed-by: Patrick Donnelly <pdonnell@redhat.com>
Reviewed-by: Josh Durgin <jdurgin@redhat.com>
This commit is contained in:
Neha Ojha 2020-12-17 14:58:57 -08:00 committed by GitHub
commit 332a188d9b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
doc/releases/nautilus.rst
View File

@ -1,3 +1,24 @@
v14.2.16 Nautilus
=================
This is the 16th backport release in the Nautilus series. This release fixes a
security flaw in CephFS. We recommend users to update to this release.
Notable Changes
---------------
* CVE-2020-27781 : OpenStack Manila use of ceph_volume_client.py library allowed
tenant access to any Ceph credential's secret. (Kotresh Hiremath Ravishankar,
Ramana Raja)
Changelog
---------
* pybind/ceph_volume_client: disallow authorize on existing auth ids (Kotresh
Hiremath Ravishankar, Ramana Raja)
v14.2.15 Nautilus
=================