[ALSA-2026:10713] Important: pcs security update
Type:
security
Severity:
important
Release date:
2026-04-29
Description:
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * lodash: lodash: Arbitrary code execution via untrusted input in template imports (CVE-2026-4800) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch cockpit-ha-cluster-0.12.1-1.el10_1.3.noarch.rpm e0f0f36b96fd798d5fd1362441af3015b3120f9b54ab30b3713bf439080c62db
ppc64le pcs-0.12.1-1.el10_1.3.ppc64le.rpm 0528ffcacc5b69970834026943fa9d99ccf1524699d36d5cf44e7c974ce1cf5b
ppc64le pcs-snmp-0.12.1-1.el10_1.3.ppc64le.rpm c029f8178dd734df47e5e58d10bf7a9cda07e5fa25ed9c45b389611c48a25f6a
s390x pcs-0.12.1-1.el10_1.3.s390x.rpm 2f5698dc30deb1a7c75b7dd0f591ec9cedc84dfe92a46a2a976679a68423d0ce
s390x pcs-snmp-0.12.1-1.el10_1.3.s390x.rpm bc8b9b1ea9ff819566a159392f9c90c2cef1af2a9846b043e2882956f959ac27
x86_64 pcs-0.12.1-1.el10_1.3.x86_64.rpm 1d8bd833610162a3bc22b7b9339f08e3e320a91dff96134e7f154573fe16264d
x86_64 pcs-snmp-0.12.1-1.el10_1.3.x86_64.rpm fc869f284e38cb16af9fa74e67d2bf1b4c9056781336fefa0e03ba37c23e3c5e
x86_64_v2 pcs-0.12.1-1.el10_1.3.x86_64_v2.rpm 62e1ec8d3f088f3c2e0861739aa60bb663cd2cfeec9c81606dfb0fe2cdcbc8b4
x86_64_v2 pcs-snmp-0.12.1-1.el10_1.3.x86_64_v2.rpm baa4eb8d41e0a45175a4de86b211165391bc77c70a5bce548a9e4d806b553224
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.