Lucene search
RedHatRHSA-2023:0506HistoryJan 30, 2023 - 1:39 p.m.
(RHSA-2023:0506) Moderate: pcs security update
2023-01-3013:39:38
access.redhat.com
19
pcs packages command-line configuration pacemaker corosync sinatra reflected file download attack cve-2022-45442 references cvss score acknowledgments.
0.003 Low
EPSS
Percentile
70.2%
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities.
Security Fix(es):
- sinatra: Reflected File Download attack (CVE-2022-45442)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | ppc64le | pcs-snmp | < 0.10.8-1.el8_4.3 | pcs-snmp-0.10.8-1.el8_4.3.ppc64le.rpm |
| RedHat | 8 | s390x | pcs-snmp | < 0.10.8-1.el8_4.3 | pcs-snmp-0.10.8-1.el8_4.3.s390x.rpm |
| RedHat | 8 | ppc64le | pcs | < 0.10.8-1.el8_4.3 | pcs-0.10.8-1.el8_4.3.ppc64le.rpm |
| RedHat | 8 | x86_64 | pcs-snmp | < 0.10.8-1.el8_4.3 | pcs-snmp-0.10.8-1.el8_4.3.x86_64.rpm |
| RedHat | 8 | aarch64 | pcs-snmp | < 0.10.8-1.el8_4.3 | pcs-snmp-0.10.8-1.el8_4.3.aarch64.rpm |
| RedHat | 8 | x86_64 | pcs | < 0.10.8-1.el8_4.3 | pcs-0.10.8-1.el8_4.3.x86_64.rpm |
| RedHat | 8 | aarch64 | pcs | < 0.10.8-1.el8_4.3 | pcs-0.10.8-1.el8_4.3.aarch64.rpm |
| RedHat | 8 | s390x | pcs | < 0.10.8-1.el8_4.3 | pcs-0.10.8-1.el8_4.3.s390x.rpm |
Related
redhat
redhat
(RHSA-2023:0393) Moderate: pcs security update
2023-01-24 08:28:32
(RHSA-2023:0855) Moderate: pcs security update
2023-02-21 08:49:16
(RHSA-2023:0527) Moderate: pcs security update
2023-01-30 13:43:59
nessus
nessus
RHEL 9 : pcs (RHSA-2023:0527)
2023-01-31 00:00:00
AlmaLinux 8 : pcs (ALSA-2023:0855)
2023-02-21 00:00:00
Oracle Linux 8 : pcs (ELSA-2023-12137)
2023-02-22 00:00:00
almalinux
almalinux
Moderate: pcs security update
2023-02-21 00:00:00
Moderate: pcs security update
2023-02-28 00:00:00
veracode
veracode
Reflected File Download
2022-11-29 05:26:03
prion
prion
Input validation
2022-11-28 21:15:00
debiancve
debiancve
CVE-2022-45442
2022-11-28 21:15:10
redhatcve
redhatcve
CVE-2022-45442
2022-12-14 13:36:10
osv
osv
ruby-sinatra - security update
2023-01-10 00:00:00
Moderate: pcs security update
2023-02-22 01:08:55
Moderate: pcs security update
2023-02-21 00:00:00
oraclelinux
oraclelinux
pcs security update
2023-02-22 00:00:00
pcs security update
2023-03-01 00:00:00
mageia
mageia
Updated ruby-sinatra packages fix security vulnerability
2023-02-07 03:06:39
nvd
nvd
CVE-2022-45442
2022-11-28 21:15:10
cve
cve
CVE-2022-45442
2022-11-28 21:15:10
cvelist
cvelist
CVE-2022-45442 Sinatra vulnerable to Reflected File Download attack
2022-11-28 00:00:00
rocky
rocky
pcs security update
2023-02-22 01:08:55
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0029)
2023-03-28 00:00:00
Debian: Security Advisory (DLA-3264-1)
2023-01-11 00:00:00
redos
redos
ROS-20240524-03
2024-05-24 00:00:00
github
github
Sinatra vulnerable to Reflected File Download attack
2022-11-30 21:18:34
debian
debian
[SECURITY] [DLA 3264-1] ruby-sinatra security update
2023-01-10 19:00:22
ubuntucve
ubuntucve
CVE-2022-45442
2022-11-28 00:00:00