Stay Secure with the Latest Linux Advisories

security advisoryFedoraupdate information

Fedora 32: 2020-2cbe0089e2 Critical: Pacemaker Update for High Availability

* Wed Nov 18 2020 Klaus Wenninger - 2.0.5-0.7.rc3 - a little more syncing with upstream spec-file * Tue Nov 17 2020 Klaus Wenninger - 2.0.5-0.6.rc3 - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc3 for full details, see included ChangeLog file or . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-2cbe0089e2 2020-11-27 01:11:05.570356 --------------------------------------------------------------------------------Name : pacemaker Product : Fedora 32 Version : 2.0.5 Release : 0.7.rc3.fc32 URL : https://clusterlabs.org/ Summary : Scalable High-Availability cluster resource manager Description : Pacemaker is an advanced, scalable High-Availability cluster resource manager. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when related resources fail and can be configured to periodically check resource health. Available rpmbuild rebuild options: --with(out) : cibsecrets coverage doc hardening pre_release profiling --------------------------------------------------------------------------------Update Information: * Wed Nov 18 2020 Klaus Wenninger - 2.0.5-0.7.rc3 - a little more syncing with upstream spec-file * Tue Nov 17 2020 Klaus Wenninger - 2.0.5-0.6.rc3 - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc3 for full details, see included ChangeLog file or https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc3 -Corosync in Fedora now provides corosync-devel as well in isa-flavor * Sun Nov 1 2020 Klaus Wenninger - 2.0.5-0.5.rc2 - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc2, includes fix for CVE-2020-25654 for full details, see included ChangeLog file or https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc2-Remove dependencies to nagios-plugins from metadata-package - some sync with structure of upstream spec-file - removed some legacy conditionals - added with-cibsecrets - enable some basic gating-tests - remove building documentation using publican from ELN - rename doc-dir for ELN ---- - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc2, includes fix for CVE-2020-25654 for full details, see included ChangeLog file or https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc2 -Remove dependencies to nagios-plugins from metadata-package - some sync with structure of upstream spec-file - removed some legacy conditionals - added with-cibsecrets - enable some basic gating-tests - remove building documentation using publican from ELN - rename doc-dir for ELN --------------------------------------------------------------------------------ChangeLog: * Wed Nov 18 2020 Klaus Wenninger - 2.0.5-0.7.rc3 - a little more syncing with upstream spec-file * Tue Nov 17 2020 Klaus Wenninger - 2.0.5-0.6.rc3 - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc3 for full details, see included ChangeLog file or https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc3 - Corosync in Fedora now provides corosync-devel as well in isa-flavor * Sun Nov 1 2020 Klaus Wenninger - 2.0.5-0.5.rc2 - Update for new upstream tarball for release candidate: Pacemaker-2.0.5-rc2, includes fix for CVE-2020-25654 for full details, see included ChangeLog file or https://github.com/ClusterLabs/pacemaker/releases/tag/Pacemaker-2.0.5-rc2 - Remove dependencies to nagios-plugins from metadata-package - some sync with structure of upstream spec-file - removed some legacy conditionals - added with-cibsecrets - enable some basic gating-tests - remove building documentation using publican from ELN - rename doc-dir for ELN --------------------------------------------------------------------------------References: [ 1 ] Bug#1889581 - pacemaker-2.0.5-rc2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1889581 [ 2 ] Bug #1891718 - CVE-2020-25654 pacemaker: ACL restrictions bypass [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1891718 [ 3 ] Bug #1898409 - pacemaker-2.0.5-rc3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1898409 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-2cbe0089e2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The latest Fedora 32 pacemaker update to version 2.0.5 encompasses alignment with upstream advancements and critical security enhancements.. Pacemaker Update, Fedora Security, High-Availability Clusters. . Severity: Critical. LinuxSecurity.com Team

Nov 26, 2020 •Critical Fedora