[ALSA-2023:3082] Moderate: pcs security and bug fix update
Type:
security
Severity:
moderate
Release date:
2023-05-19
Description:
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Denial of service in Multipart MIME parsing (CVE-2023-27530) * rubygem-rack: denial of service in header parsing (CVE-2023-27539) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Command 'pcs config checkpoint diff' does not show configuration differences between checkpoints (BZ#2180700) * Need a way to add a scsi fencing device to a cluster without requiring a restart of all cluster resources (BZ#2180706)
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 pcs-snmp-0.10.15-4.el8_8.1.alma.aarch64.rpm 66ef34d8a5590d5be4bdf1f9b65aedf5292b947279c2938db3ba1f9daa7f8ce0
aarch64 pcs-0.10.15-4.el8_8.1.alma.aarch64.rpm b815d36aec29271f1586cd832d65300c9b585c77d4d99aca3f969596bacfa841
ppc64le pcs-0.10.15-4.el8_8.1.alma.ppc64le.rpm 2de12e2d95058a2ebc449ed4f69a09fafef1bd7e81a8780fb826045e36eae932
ppc64le pcs-snmp-0.10.15-4.el8_8.1.alma.ppc64le.rpm ab329415c6518432e363cadb0d8492e6cc5dac7a1e809aa30585427fe175c79f
s390x pcs-0.10.15-4.el8_8.1.alma.s390x.rpm 66f71e2f6e0160dc9b8151d8d9e759f4fe35af112978f2cc94d1c3a338386fda
s390x pcs-snmp-0.10.15-4.el8_8.1.alma.s390x.rpm 6d0a028d15caa51274b3d750f6533fd25c025f462df16db1b0933cc523e0b00e
x86_64 pcs-snmp-0.10.15-4.el8_8.1.alma.x86_64.rpm 70335604fb56095d52f6f636b706dce9662302550ecf7a21eccee26858129325
x86_64 pcs-0.10.15-4.el8_8.1.alma.x86_64.rpm eb23d13831ac1359e51e566c96e6fd4406ae532dad7270802bdac0315f6d015d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.