VulnerableCode Package Details - pkg:deb/debian/ceph@16.2.15%2Bds-0%2Bdeb12u1

Search for packages

Vulnerability	Summary	Fixed by
VCID-18bk-met9-qfc9 Aliases: CVE-2024-31884	pybind: Improper use of Pybind	18.2.8+ds-1 Affected by 0 other vulnerabilities.
VCID-1yz5-m9s7-nqdm Aliases: CVE-2024-47866	rgw: RGW DoS attack with empty HTTP header in S3 object copy	18.2.8+ds-1 Affected by 0 other vulnerabilities.
VCID-r1ah-c6z7-vyen Aliases: CVE-2025-52555	ceph: privilege escalation by unprivileged users in a ceph-fuse mounted CephFS	18.2.7+ds-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-18bk-met9-qfc9
Aliases:
CVE-2024-31884

pybind: Improper use of Pybind

18.2.8+ds-1
Affected by 0 other vulnerabilities.

VCID-1yz5-m9s7-nqdm
Aliases:
CVE-2024-47866

rgw: RGW DoS attack with empty HTTP header in S3 object copy

18.2.8+ds-1
Affected by 0 other vulnerabilities.

VCID-r1ah-c6z7-vyen
Aliases:
CVE-2025-52555

ceph: privilege escalation by unprivileged users in a ceph-fuse mounted CephFS

18.2.7+ds-1
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-18bk-met9-qfc9	pybind: Improper use of Pybind	CVE-2024-31884
VCID-1yz5-m9s7-nqdm	rgw: RGW DoS attack with empty HTTP header in S3 object copy	CVE-2024-47866
VCID-47cr-h639-tqd4	rgw: improperly verified POST keys	CVE-2023-43040
VCID-54nw-yq6d-2ueu	A vulnerability has been found in Ceph which can lead to root privilege escalation.	CVE-2022-3650
VCID-5bgn-2pbq-6yd1	ceph: user/tenant can obtain access (read/write) to any share	CVE-2022-0670
VCID-nczx-qfyh-xubz	ceph: Ceph volume does not honour osd_dmcrypt_key_size	CVE-2021-3979
VCID-r1ah-c6z7-vyen	ceph: privilege escalation by unprivileged users in a ceph-fuse mounted CephFS	CVE-2025-52555

Vulnerability

Summary

Aliases

VCID-18bk-met9-qfc9

pybind: Improper use of Pybind

CVE-2024-31884

VCID-1yz5-m9s7-nqdm

rgw: RGW DoS attack with empty HTTP header in S3 object copy

CVE-2024-47866

VCID-47cr-h639-tqd4

rgw: improperly verified POST keys

CVE-2023-43040

VCID-54nw-yq6d-2ueu

A vulnerability has been found in Ceph which can lead to root privilege escalation.

CVE-2022-3650

VCID-5bgn-2pbq-6yd1

ceph: user/tenant can obtain access (read/write) to any share

CVE-2022-0670

VCID-nczx-qfyh-xubz

ceph: Ceph volume does not honour osd_dmcrypt_key_size

CVE-2021-3979

VCID-r1ah-c6z7-vyen

ceph: privilege escalation by unprivileged users in a ceph-fuse mounted CephFS

CVE-2025-52555

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:14:06.689251+00:00	Debian Importer	Affected by	VCID-18bk-met9-qfc9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:51:34.500129+00:00	Debian Importer	Affected by	VCID-1yz5-m9s7-nqdm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:34:27.718729+00:00	Debian Importer	Affected by	VCID-r1ah-c6z7-vyen	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-15T23:48:40.051108+00:00	Debian Oval Importer	Fixing	VCID-47cr-h639-tqd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:53:53.172855+00:00	Debian Oval Importer	Fixing	VCID-54nw-yq6d-2ueu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:40:52.478192+00:00	Debian Oval Importer	Fixing	VCID-5bgn-2pbq-6yd1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:24:35.034146+00:00	Debian Oval Importer	Fixing	VCID-1yz5-m9s7-nqdm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:09:18.547699+00:00	Debian Oval Importer	Fixing	VCID-nczx-qfyh-xubz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:25:14.027586+00:00	Debian Oval Importer	Fixing	VCID-18bk-met9-qfc9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:37:37.025822+00:00	Debian Oval Importer	Fixing	VCID-r1ah-c6z7-vyen	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-13T09:06:44.524384+00:00	Debian Importer	Affected by	VCID-18bk-met9-qfc9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:49:34.930578+00:00	Debian Importer	Affected by	VCID-1yz5-m9s7-nqdm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:08:33.952710+00:00	Debian Importer	Affected by	VCID-r1ah-c6z7-vyen	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T23:23:10.198944+00:00	Debian Oval Importer	Fixing	VCID-47cr-h639-tqd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:30:22.030934+00:00	Debian Oval Importer	Fixing	VCID-54nw-yq6d-2ueu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:19:40.753429+00:00	Debian Oval Importer	Fixing	VCID-5bgn-2pbq-6yd1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:06:08.025188+00:00	Debian Oval Importer	Fixing	VCID-1yz5-m9s7-nqdm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:53:01.129179+00:00	Debian Oval Importer	Fixing	VCID-nczx-qfyh-xubz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:11:36.413464+00:00	Debian Oval Importer	Fixing	VCID-18bk-met9-qfc9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:25:30.857676+00:00	Debian Oval Importer	Fixing	VCID-r1ah-c6z7-vyen	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:56:23.830682+00:00	Debian Oval Importer	Fixing	VCID-47cr-h639-tqd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:05:59.130411+00:00	Debian Oval Importer	Fixing	VCID-54nw-yq6d-2ueu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:58:24.005505+00:00	Debian Oval Importer	Fixing	VCID-5bgn-2pbq-6yd1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:47:39.540711+00:00	Debian Oval Importer	Fixing	VCID-1yz5-m9s7-nqdm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:37:47.117115+00:00	Debian Oval Importer	Fixing	VCID-nczx-qfyh-xubz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:00:35.743564+00:00	Debian Oval Importer	Fixing	VCID-18bk-met9-qfc9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:19:59.099393+00:00	Debian Oval Importer	Fixing	VCID-r1ah-c6z7-vyen	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-02T17:17:51.811759+00:00	Debian Importer	Affected by	VCID-18bk-met9-qfc9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:16:20.829125+00:00	Debian Importer	Affected by	VCID-1yz5-m9s7-nqdm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:08:38.280199+00:00	Debian Importer	Affected by	VCID-r1ah-c6z7-vyen	https://security-tracker.debian.org/tracker/data/json	38.1.0