Vulnerability Database
Blog
FAQ
Docs
RHSA-2024:6670
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2024:6670
Import Source
https://security.access.redhat.com/data/osv/RHSA-2024:6670.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2024:6670
Related
CVE-2024-41123
CVE-2024-41946
CVE-2024-43398
Published
2024-09-27T20:05:13Z
Modified
2024-09-27T20:05:13Z
Severity
5.9 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: pcs security update
Details
References
https://access.redhat.com/errata/RHSA-2024:6670
https://access.redhat.com/security/updates/classification/#moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2302268
https://bugzilla.redhat.com/show_bug.cgi?id=2302272
https://bugzilla.redhat.com/show_bug.cgi?id=2307297
https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_6670.json
https://access.redhat.com/security/cve/CVE-2024-41123
https://www.cve.org/CVERecord?id=CVE-2024-41123
https://nvd.nist.gov/vuln/detail/CVE-2024-41123
https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8
https://github.com/ruby/rexml/security/advisories/GHSA-r55c-59qm-vjw6
https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123
https://access.redhat.com/security/cve/CVE-2024-41946
https://www.cve.org/CVERecord?id=CVE-2024-41946
https://nvd.nist.gov/vuln/detail/CVE-2024-41946
https://github.com/ruby/rexml/commit/033d1909a8f259d5a7c53681bcaf14f13bcf0368
https://github.com/ruby/rexml/security/advisories/GHSA-5866-49gr-22v4
https://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml
https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946
https://access.redhat.com/security/cve/CVE-2024-43398
https://www.cve.org/CVERecord?id=CVE-2024-43398
https://nvd.nist.gov/vuln/detail/CVE-2024-43398
https://github.com/ruby/rexml/releases/tag/v3.3.6
https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3
Affected packages
Red Hat:enterprise_linux:8::highavailability
/
pcs
Package
Name
pcs
Purl
pkg:rpm/redhat/pcs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.18-2.el8_10.2
Red Hat:enterprise_linux:8::highavailability
/
pcs-snmp
Package
Name
pcs-snmp
Purl
pkg:rpm/redhat/pcs-snmp
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.18-2.el8_10.2
Red Hat:enterprise_linux:8::resilientstorage
/
pcs
Package
Name
pcs
Purl
pkg:rpm/redhat/pcs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.18-2.el8_10.2
Red Hat:enterprise_linux:8::resilientstorage
/
pcs-snmp
Package
Name
pcs-snmp
Purl
pkg:rpm/redhat/pcs-snmp
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.18-2.el8_10.2
RHSA-2024:6670 - OSV