UbuntuUpdates.org

Package "librbd1"

Name: librbd1

Description:

RADOS block device client library
Latest version: 19.2.3-0ubuntu0.24.04.3
Release: noble (24.04)
Level: updates
Repository: main
Head package: ceph
Homepage: http://ceph.com/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "librbd1"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "librbd1" in Noble

Repository Area Version
base main 19.2.0~git20240301.4c76c50-0ubuntu6
security main 19.2.3-0ubuntu0.24.04.3

Changelog

Version: 19.2.3-0ubuntu0.24.04.3 2026-02-25 03:08:47 UTC

  ceph (19.2.3-0ubuntu0.24.04.3) noble-security; urgency=medium

  * SECURITY UPDATE: Improper certificate checking via Pybind
    - debian/patches/CVE-2024-31884.patch: Enforce ssl context validation to
      SMTP_SSL in src/pybind/mgr/alerts/module.py
    - CVE-2024-31884
  * SECURITY UPDATE: Denial of service by passing empty header argument
    - debian/patches/CVE-2024-47866.patch: Ensure `HTTP_X_AMZ_COPY_SOURCE`
      header is empty in src/rgw/rgw_op.cc
    - CVE-2024-47866

 -- Shafayat Hossain Majumder <email address hidden> Sun, 08 Feb 2026 15:52:27 -0500
Source diff to previous version
CVE-2024-47866 Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument `x-amz-copy-source` to put

Version: 19.2.3-0ubuntu0.24.04.2 2026-01-20 15:10:56 UTC

  ceph (19.2.3-0ubuntu0.24.04.2) noble; urgency=medium

  * d/clean: Remove entries added in 19.2.3 SRU to fix regression
    in rendering ceph-mgr-dashboard due to missing JavaScript
    files. (LP: #2134985)

 -- Matthew Ruffell <email address hidden> Thu, 18 Dec 2025 15:28:50 +1300
Source diff to previous version
2134985 ceph-mgr-dashboard renders blank page due to missing JavaScript files in package 19.2.3

Version: 19.2.3-0ubuntu0.24.04.1 2025-12-11 01:10:10 UTC

  ceph (19.2.3-0ubuntu0.24.04.1) noble; urgency=medium

  [ Luciano Lo Giudice ]
  * New upstream stable release (LP: #2119024)
  * d/control: Update dependencies.
  * d/rules: Enable LTTNG.
  * d/p/pyo3-fix.patch: Fix issues with PyO3.
  * d/p/CVE-2024-48916.patch: Removed, no longer needed.
  * d/p/patch-out-libnbd.patch: build without libnbd.
  * d/clean: Add btrfs and dashboard removals.
  * d/source/lintian-overrides: Fixup changed directory.
  * Backported from resolute to noble. Differences:
  * d/p/questing-boost-fix.patch: Removed, not needed on noble.
  * d/p/py313-compat/*.patch: Removed, not needed on noble.

  [ Graham Inggs ]
  * d/p/pass-build-flags.patch: Pass buildflags to Python extensions
    (LP: #2078244).

 -- Luciano Lo Giudice <email address hidden> Wed, 29 Oct 2025 22:09:45 +0000
Source diff to previous version
2119024 [SRU] Squid: Ceph new point release 19.2.3
2078244 ceph: Does not respect compiler flags for Python extensions
CVE-2024-48916 Authentication bypass in CEPH RadosGW

Version: 19.2.1-0ubuntu0.24.04.2 2025-07-10 22:07:10 UTC

  ceph (19.2.1-0ubuntu0.24.04.2) noble; urgency=medium

  * d/p/snapshot-upgrade-fix.patch: Remove logging as it crashed Ganesha
    (LP: #2097605)
Source diff to previous version
2097605 [SRU] Squid: Ceph new point release 19.2.1

Version: 19.2.0-0ubuntu0.24.04.2 2025-01-06 18:07:07 UTC

  ceph (19.2.0-0ubuntu0.24.04.2) noble-security; urgency=medium

  * SECURITY UPDATE: Authentication bypass through unsupported JWT algorithm.
    - debian/patches/CVE-2024-48916.patch: Disallow unsupported JWT algorithms
      in src/rgw/rgw_rest_sts.cc.
    - CVE-2024-48916

 -- Hlib Korzhynskyy <email address hidden> Wed, 18 Dec 2024 10:02:15 -0330
CVE-2024-48916 Authentication bypass in CEPH RadosGW


About   -   Send Feedback to @ubuntu_updates