[ClusterLabs] Fix for CVE-2022-30123 and CVE-2019-11358
Tomas Jelinek
tojeline at redhat.com
Mon Jan 2 07:02:45 EST 2023
Hi A Gunasekar,
As far as I can see, updated pcs packages pcs-0.9.169-3.el7_9.3 which
fix the mentioned CVEs were released on 2022-11-02.
Regards,
Tomas
Dne 21. 12. 22 v 14:28 A Gunasekar via Users napsal(a):
> Hi Team,
>
> Please be informed, we have got notified from our security tool that our
> pcs version 0.9 is affected by the *CVE-2022-30123 and CVE-2019-11358*.
>
> It would be great if we help to get answers for the below queries.
>
> **
>
> * We are currently in RHEL 7.9 OS and using pcs 0.9 version, Is there
> any fix planned/available for this affection version (0.9.x) of pcs ?**
> * Let us know in which release this CVEs fix are planned ?**
>
> **
>
> *Our system Details:-*
>
> OS Version: RHEL 7.9
>
> Cluster lab PCS version: 0.9
>
> Ericsson <http://www.ericsson.com/>
>
> *Gunasekar A ***
>
> Senior Software Engineer
>
> BDGS SA BSS PDU BSS PDG EC CH NGCRS
>
> Mobile: +919894561292
>
> Email ID: a.gunasekar at ericsson.com <mailto:a.gunasekar at ericsson.com>**
>
>
> _______________________________________________
> Manage your subscription:
> https://lists.clusterlabs.org/mailman/listinfo/users
>
> ClusterLabs home: https://www.clusterlabs.org/
More information about the Users
mailing list