Thanks for this. Is download.ceph.com more heavily loaded than usual? It's taking more than 24 hours to rsync this release to our local mirror (and AFAICT none of the European mirrors have caught up yet). Cheers, Dan On Thu, Dec 17, 2020 at 3:55 AM David Galloway <dgallowa@xxxxxxxxxx> wrote: > > This is the 16th backport release in the Nautilus series. This release fixes a > security flaw in CephFS. We recommend users to update to this release. > > Notable Changes > --------------- > * CVE-2020-27781 : OpenStack Manila use of ceph_volume_client.py library allowed > tenant access to any Ceph credential's secret. (Kotresh Hiremath Ravishankar, > Ramana Raja) > > > Changelog > --------- > * pybind/ceph_volume_client: disallow authorize on existing auth ids (Kotresh > Hiremath Ravishankar, Ramana Raja) > > > Getting Ceph > ------------ > * Git at git://github.com/ceph/ceph.git > * Tarball at http://download.ceph.com/tarballs/ceph-14.2.16.tar.gz > * For packages, see http://docs.ceph.com/docs/master/install/get-packages/ > * Release git sha1: 762032d6f509d5e7ee7dc008d80fe9c87086603c > _______________________________________________ Dev mailing list -- dev@xxxxxxx To unsubscribe send an email to dev-leave@xxxxxxx
