ELSA-2024-2113 - pcs security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2024-05-02 |
Description
[0.11.7-2]
- Fixed CVE-2024-25126, CVE-2024-26141, CVE-2024-26146 in bundled dependency rack
Resolves: RHEL-26446, RHEL-26448, RHEL-26450
[0.11.7-1]
- Rebased to the latest sources (see CHANGELOG.md)
Resolves: RHEL-7740
[0.11.6-6]
- Rebased to the latest upstream sources (see CHANGELOG.md)
Resolves: RHEL-7582, RHEL-7583, RHEL-7669, RHEL-7672, RHEL-7697, RHEL-7698, RHEL-7700, RHEL-7703, RHEL-7719, RHEL-7725, RHEL-7730, RHEL-7738, RHEL-7739, RHEL-7740, RHEL-7744, RHEL-7746
- TLS cipher setting in pcsd now follows system-wide crypto policies by default
Resolves: RHEL-7724
- Tightened permissions of bundled rubygems to be 755 or stricter
Resolves: RHEL-7716
[0.11.6-5]
- No changes, fixing an error in a new quality control process
- Resolves: RHEL-15217
[0.11.6-4]
- No changes, testing a new quality control process
- Resolves: RHEL-15217
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory | Channel Label |
|
| Oracle Linux 9 (aarch64) | pcs-0.11.7-2.el9_4.src.rpm | d12ff492de6da3ff434b50beee3052c4 | - | ol9_aarch64_addons |
| pcs-0.11.7-2.el9_4.aarch64.rpm | 717af4abb70de7a6ffa8830304c13b1e | - | ol9_aarch64_addons |
| pcs-snmp-0.11.7-2.el9_4.aarch64.rpm | 704904075b0b83720be2f8c6297616ac | - | ol9_aarch64_addons |
|
| Oracle Linux 9 (x86_64) | pcs-0.11.7-2.el9_4.src.rpm | d12ff492de6da3ff434b50beee3052c4 | - | ol9_x86_64_addons |
| pcs-0.11.7-2.el9_4.x86_64.rpm | 28dc674de236bf9dfa3e885766c0c9d0 | - | ol9_x86_64_addons |
| pcs-snmp-0.11.7-2.el9_4.x86_64.rpm | 747748bafc2fd526e9d5a73cb5bf49d8 | - | ol9_x86_64_addons |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
