MGASA-2021-0045 - Updated resource-agents packages fix security vulnerabilities

Publication date: 19 Jan 2021
URL: https://advisories.mageia.org/MGASA-2021-0045.html
Type: security
Affected Mageia releases: 7

Multiple vulnerabilities related to unsafe tempfile usage (bsc#1146690,
bsc#1146691, bsc#1146692, bsc#1146766, bsc#1146776, bsc#1146784, bsc#1146785,
bsc#1146787).

Issues where the ocfmon user was created with a default password (bsc#1021689,
bsc#1146687).

The resource-agents package has been updated to version 4.7.0, fixing these
issues and several other bugs.

References:
- https://bugs.mageia.org/show_bug.cgi?id=26538
- https://lists.opensuse.org/opensuse-updates/2020-05/msg00031.html

SRPMS:
- 7/core/resource-agents-4.7.0-1.mga7