This is the ninth bugfix release of Nautilus. This release fixes a
couple of security issues in RGW & Messenger V2. We recommend all users
to upgrade to this release. The official release blog entry is at
https://ceph.io/releases/v14-2-9-nautilus-released/
Notable Changes:
- CVE-2020-1759: Fixed nonce reuse in msgr V2 secure mode
- CVE-2020-1760: Fixed XSS due to RGW GetObject header-splitting
Getting Ceph
------------
* Git at git://github.com/ceph/ceph.git
* Tarball at http://download.ceph.com/tarballs/ceph-14.2.9.tar.gz
* For packages, see
http://docs.ceph.com/docs/master/install/get-packages/
* Release git sha1: 581f22da52345dba46ee232b73b990f06029a2a0
Best,
Abhishek
_______________________________________________
Dev mailing list -- dev@xxxxxxx
To unsubscribe send an email to dev-leave@xxxxxxx