ALSA-2020:5487

[ALSA-2020:5487] Moderate: pacemaker security update

Type:

security

Severity:

moderate

Release date:

2021-08-11

Description:

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. 

Security Fix(es):

* pacemaker: ACL restrictions bypass (CVE-2020-25654)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

CVE-2020-25654

Updated packages listed below:

Architecture	Package	Checksum
i686	pacemaker-libs-devel-2.0.4-6.el8_3.1.i686.rpm	6b642aa7845fb8abe9c3705104c824e35ebdc072cb2775c208df8fc39953e3fe
noarch	pacemaker-nagios-plugins-metadata-2.0.4-6.el8_3.1.noarch.rpm	2669037f04f076e3d088293f3420d107e0c608ec8bf28bcd3954cce546c9a4f0
noarch	pacemaker-cts-2.0.4-6.el8_3.1.noarch.rpm	69c97ac385ff86cf18c1d5a38bbd7bef8dc3fb5b93b35500e82c8e48c05ae62e
noarch	pacemaker-doc-2.0.4-6.el8_3.1.noarch.rpm	b208aa7e25804decfb2d9ed1e2867ce14bea2020e8200ee287fc964ec58ebaa6
x86_64	pacemaker-libs-devel-2.0.4-6.el8_3.1.x86_64.rpm	0a0f10fbdbee806a506def82a0b928fccb1e574e6bf5d5bfcfeb2bee6bba9311
x86_64	pacemaker-remote-2.0.4-6.el8_3.1.x86_64.rpm	3e94f36637c2c097c1fd14196ec43eacd734e6fb2dca5665c69f1a9a991bf0e6
x86_64	pacemaker-2.0.4-6.el8_3.1.x86_64.rpm	5083abd69da87badb31ba60dec97b2d9d18c5b22591a58e3573c85b1670773a7
x86_64	pacemaker-cli-2.0.4-6.el8_3.1.x86_64.rpm	703474fb81d4397c55bb9b88f83faad6aa56afc0a2ffbe09cad2f06c67266b47

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.