CVE-2023-43040

Publication date 27 September 2023

Last updated 24 July 2024


Ubuntu priority

IBM Spectrum Fusion HCI 2.5.2 through 2.7.2 could allow an attacker to perform unauthorized actions in RGW for Ceph due to improper bucket access. IBM X-Force ID: 266807.

Status

Package Ubuntu Release Status
ceph 24.10 oracular
Fixed 18.2.0-0ubuntu6
24.04 LTS noble
Fixed 18.2.0-0ubuntu6
23.10 mantic
Fixed 18.2.0-0ubuntu3.1
23.04 lunar Ignored end of life, was needed
22.04 LTS jammy
Fixed 17.2.6-0ubuntu0.22.04.3
20.04 LTS focal
Fixed 15.2.17-0ubuntu0.20.04.6
18.04 LTS bionic
16.04 LTS xenial
14.04 LTS trusty

Get expanded security coverage with Ubuntu Pro

Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.

Get Ubuntu Pro

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
ceph

References

Related Ubuntu Security Notices (USN)

Other references