Fedora ceph-deploy CVE-2015-3010 Information Disclosure Vulnerability

description-logoDescription

It was discovered that ceph-deploy, a utility for deploying Red Hat Ceph Storage, would create the keyring file with world readable permissions, which could possibly allow a local user to obtain authentication credentials from the keyring file.

affected-products-logoAffected Applications

ceph-deploy

CVE References

CVE-2015-3010