Lucene search
RedHatRHSA-2022:2256HistoryMay 16, 2022 - 7:05 a.m.
(RHSA-2022:2256) Important: pcs security update
2022-05-1607:05:30
access.redhat.com
16
0.002 Low
EPSS
Percentile
61.3%
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities.
Security Fix(es):
- sinatra: path traversal possible outside of public_dir when serving static files (CVE-2022-29970)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | pcs | < 0.10.8-1.el8_4.1 | pcs-0.10.8-1.el8_4.1.x86_64.rpm |
| RedHat | 8 | aarch64 | pcs-snmp | < 0.10.8-1.el8_4.1 | pcs-snmp-0.10.8-1.el8_4.1.aarch64.rpm |
| RedHat | 8 | ppc64le | pcs | < 0.10.8-1.el8_4.1 | pcs-0.10.8-1.el8_4.1.ppc64le.rpm |
| RedHat | 8 | aarch64 | pcs | < 0.10.8-1.el8_4.1 | pcs-0.10.8-1.el8_4.1.aarch64.rpm |
| RedHat | 8 | s390x | pcs-snmp | < 0.10.8-1.el8_4.1 | pcs-snmp-0.10.8-1.el8_4.1.s390x.rpm |
| RedHat | 8 | x86_64 | pcs-snmp | < 0.10.8-1.el8_4.1 | pcs-snmp-0.10.8-1.el8_4.1.x86_64.rpm |
| RedHat | 8 | ppc64le | pcs-snmp | < 0.10.8-1.el8_4.1 | pcs-snmp-0.10.8-1.el8_4.1.ppc64le.rpm |
| RedHat | 8 | s390x | pcs | < 0.10.8-1.el8_4.1 | pcs-0.10.8-1.el8_4.1.s390x.rpm |
Related
nessus
nessus
RHEL 8 : pcs (RHSA-2022:2256)
2022-05-16 00:00:00
RHEL 8 : pcs (RHSA-2022:4661)
2022-05-19 00:00:00
Debian DLA-3166-1 : ruby-sinatra - LTS security update
2022-10-28 00:00:00
mageia
mageia
Updated ruby-sinatra packages fix security vulnerability
2022-08-13 05:32:35
osv
osv
Important: pcs security update
2022-05-18 13:52:10
CVE-2022-29970
2022-05-02 05:15:06
Important: pcs security update
2022-05-18 00:00:00
cve
cve
CVE-2022-29970
2022-05-02 05:15:06
ubuntucve
ubuntucve
CVE-2022-29970
2022-05-02 00:00:00
oraclelinux
oraclelinux
pcs security update
2022-06-30 00:00:00
pcs security update
2022-05-20 00:00:00
prion
prion
Code injection
2022-05-02 05:15:00
cvelist
cvelist
CVE-2022-29970
2022-05-02 00:00:00
redhat
redhat
(RHSA-2022:4661) Important: pcs security update
2022-05-18 13:52:10
(RHSA-2022:4587) Important: pcs security update
2022-05-18 00:08:58
(RHSA-2022:2253) Important: pcs security update
2022-05-16 07:03:34
openvas
openvas
Debian: Security Advisory (DLA-3166-1)
2022-10-29 00:00:00
Mageia: Security Advisory (MGASA-2022-0280)
2022-08-15 00:00:00
debian
debian
[SECURITY] [DLA 3166-1] ruby-sinatra security update
2022-10-28 03:53:39
almalinux
almalinux
Important: pcs security update
2022-05-18 13:52:10
Important: pcs security update
2022-05-18 00:00:00
rocky
rocky
pcs security update
2022-05-18 13:52:10
Satellite 6.12 Release
2022-11-16 13:21:30
nvd
nvd
CVE-2022-29970
2022-05-02 05:15:06
veracode
veracode
Privilege Escalation
2022-05-04 17:08:11
redhatcve
redhatcve
CVE-2022-29970
2022-05-02 18:30:17
debiancve
debiancve
CVE-2022-29970
2022-05-02 05:15:06
github
github
sinatra does not validate expanded path matches
2022-05-03 00:00:43
