[ClusterLabs] pcs 0.10.19 released
Michal Pospíšil
mpospisi at redhat.com
Wed Dec 18 16:07:27 UTC 2024
I am happy to announce the latest release of pcs, version 0.10.19.
Source code is available at:
https://github.com/ClusterLabs/pcs/archive/refs/tags/v0.10.19.tar.gz
or
https://github.com/ClusterLabs/pcs/archive/refs/tags/v0.10.19.zip
This is a special release of the no longer maintained pcs-0.10 branch.
It includes security hardening for recently reported vulnerabilities
related to processing HTTP headers in multiple rubygems. In addition,
the last published release was not able to produce RPMs with `make rpm`.
Special thank you goes to S Sathish S for alerting us about this issue.
Complete change log for this release:
### Security
- HTTP headers are no longer resent from Python daemon to the Ruby
daemon. This is security hardening against vulnerabilities in rubygems
Puma, Rack and Sinatra that have been recently reported.
### Fixed
- Failure to build pcs from upstream specfile from a tagged commit. The
only affected release is 0.10.18.
Cheers,
Michal
More information about the Users
mailing list