python3-azure-sdk bug fix and enhancement update

An update is available for python3-azure-sdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms python3-azure-sdk-4.0.0-9.el8.noarch.rpm aa7cd4bd1d321e0b302bf94afab40b115c5b5d034382f088f5974b59dfcf54f6 RLBA-2020:3148 Rocky Enterprise Software Foundation OpenStack Platform 16.1 bug fix and enhancement advisory Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for python-gflags, python-oauth2client, google-api-python-client, python-httplib2, python-uritemplate. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. For additional information about the items in this advisory, refer to the Technical Notes chapter of the Release Notes, https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html/release_notes/chap-technical_notes rocky-linux-8-x86-64-highavailability-rpms python3-gflags-2.0-13.el8.noarch.rpm 8cac8dc7fe48f077355f298618945b2792ac9abd033ad53edc5eeea17ca9cf7c python3-google-api-client-1.6.5-3.el8.noarch.rpm 2ce75f035008a471ebbf565ec52f63568abcf338cdd7d5994d2de7b2b7001c56 python3-httplib2-0.10.3-4.el8.noarch.rpm 6e8b831ea4c97e85d08e061f6ed8f03ffd62a7ab0df8bc9b2f3222fd2c33e8b7 python3-oauth2client-4.1.2-6.el8.noarch.rpm c2725cc8a16722c6642621a1a479d94bf8da307834b1d80178b5ad71fab363b9 python3-uritemplate-3.0.0-3.el8.noarch.rpm a5d0d004c1b556772f5de2ca54e28a561aea0f0d4186343418f1bb8416493455 RLBA-2021:1740 corosync-qdevice bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for corosync-qdevice. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 8.4 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms corosync-qdevice-3.0.1-1.el8.x86_64.rpm 0dda6940be2f453797a5da6bfa67e025258035a5a90c04286ac2dc552f32a93f corosync-qnetd-3.0.1-1.el8.x86_64.rpm cad5c81daed65fd7eef0153650f76e752936b264692f123bdd4fdaf84eb4d495 RLEA-2021:3483 Rocky Enterprise Software Foundation OpenStack Platform (RHOSP) 16.2 enhancement advisory Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for google-api-python-client, python-gflags, python-oauth2client, python-uritemplate. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. For additional information about the items in this advisory, refer to the Technical Notes chapter of the Release Notes, https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16 .2/html/release_notes/chap-technical_notes rocky-linux-8-x86-64-highavailability-rpms python3-gflags-2.0-13.el8.noarch.rpm 8cac8dc7fe48f077355f298618945b2792ac9abd033ad53edc5eeea17ca9cf7c python3-google-api-client-1.6.5-3.el8.noarch.rpm 2ce75f035008a471ebbf565ec52f63568abcf338cdd7d5994d2de7b2b7001c56 python3-oauth2client-4.1.2-6.el8.noarch.rpm c2725cc8a16722c6642621a1a479d94bf8da307834b1d80178b5ad71fab363b9 python3-uritemplate-3.0.0-3.el8.noarch.rpm a5d0d004c1b556772f5de2ca54e28a561aea0f0d4186343418f1bb8416493455 RLBA-2022:7445 awscli bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for awscli. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms awscli-1.23.2-1.el8.noarch.rpm ac10e3a749343120ee7cdbc695e3a203dfff08902e458f292f17a001a1ffaba1 RLSA-2022:7447 Moderate: pcs security, bug fix, and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

An update is available for pcs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * pcs: improper authentication via PAM (CVE-2022-1049) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-snmp-0.10.14-5.el8.x86_64.rpm f6b5146fd06dcc7495b43f3284b98f54dd620e20d26d3dfed2f43db48c2690c4 pcs-0.10.14-5.el8.x86_64.rpm 22c2c8172966c7120a295629ce9a0c129a5089e543a168b727ddd8b7be5d592f RLBA-2022:7454 booth bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for booth. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.0-199.2.ac1d34c.git.el8.x86_64.rpm fdd3b6a08f890d7665ee0215a16e91e34b886f1a1ad0dbe0d875f10d013b0341 booth-arbitrator-1.0-199.2.ac1d34c.git.el8.noarch.rpm 6bde07ed2cbf728a7a1e7cea0155f5073747401047b072b55efefd176553e716 booth-core-1.0-199.2.ac1d34c.git.el8.x86_64.rpm c0532a0a71fc662329554cdf9ccc2ec3505db3aa71b6402cbaca0aaf5b61924e booth-site-1.0-199.2.ac1d34c.git.el8.noarch.rpm 0de36f517ccbb9fe472995e866243e82ec8e3f16b1d96c748d2b3a40ffac123f booth-test-1.0-199.2.ac1d34c.git.el8.noarch.rpm 19010dc94aa1435246540affaec7b27768cdc17d7f1bd1325479eec9d1652053 RLBA-2022:7815 kronosnet bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for kronosnet. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms libknet1-1.24-2.el8.i686.rpm 1326549fab99705a483d51b3e22b1d3241231da92afb80c84a52332542000515 libknet1-1.24-2.el8.x86_64.rpm c47aa11ed5bedc2c7041becda3a67d03e63d5af4fa1c9948e36c1fc5b9dd11c6 libknet1-compress-bzip2-plugin-1.24-2.el8.x86_64.rpm b4e9c84f1a252d9a02b8f0336058e4b14191ed21b42d82c180cff2f7e48e2ff6 libknet1-compress-lz4-plugin-1.24-2.el8.x86_64.rpm 1fb49ca0d2871446caee5e0dadd0c6e3b8aad4ff2b1bc703d49b442127717123 libknet1-compress-lzma-plugin-1.24-2.el8.x86_64.rpm 163634bd60249d72611877e789d226079cd94081805b36b438886b91d1ba8700 libknet1-compress-lzo2-plugin-1.24-2.el8.x86_64.rpm c780d9000c8c736e14c342e71970414b4671d69aaa76500e46bda6134eb222d5 libknet1-compress-plugins-all-1.24-2.el8.x86_64.rpm fc6fb64301c9a816e9b0a25238c5720d5480f33a410c9db80c70ad81f74a9270 libknet1-compress-zlib-plugin-1.24-2.el8.x86_64.rpm 6e71ff8baf04af6cc538ad330708ecdd61dfc1b207024d6e72cc6b746e19fd57 libknet1-crypto-nss-plugin-1.24-2.el8.x86_64.rpm 01de6ec63ec3752e68aa7ebeca3cb56028a305fd50469e332df84f90ef538659 libknet1-crypto-openssl-plugin-1.24-2.el8.x86_64.rpm 4abdcb909f784d2701199a3929bb2d87cd7090baa5f03b1f67640fad50477430 libknet1-crypto-plugins-all-1.24-2.el8.x86_64.rpm 5190c10faecb28e92c4522209c0e2300a002db6659dbcc1253478d1f405f148b libknet1-plugins-all-1.24-2.el8.x86_64.rpm 5b8cc2c50eacfde090d734590a8dba501f79987ca1e4bfb34116fe3ee2a7b394 libnozzle1-1.24-2.el8.i686.rpm 7f97af18532b619b22982a0f3bc9649b12fa5f251d7619eabe6369a5db9043c0 libnozzle1-1.24-2.el8.x86_64.rpm 885cfdf51a2c6bca59c0f1de2feaae8bcd4b0662c14ce04f5cedd628823468dc RLEA-2022:7823 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for resource-agents. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * azure-events-az: Resource agent azure-events testing issue (BZ#2130986) * IPsrcaddr: Fail to perform the stop operation with `Error: Invalid scope` (BZ#2134536) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.2.x86_64.rpm 62d51688a45a7353f739566ea85fbc99cd8dba11108068a8b59835d037d94b69 resource-agents-aliyun-4.9.0-29.el8_7.2.x86_64.rpm 3b9463bf1b936c31630f2ce3e35746905b50402905053e6e2cf14797c5e20ec9 resource-agents-gcp-4.9.0-29.el8_7.2.x86_64.rpm f67bc18bee7a6c18dd0e60e69b13f269922b2dc54249451d9da9357a8f14c4c5 resource-agents-paf-4.9.0-29.el8_7.2.x86_64.rpm a075a6646c5a475d05d64e2bfd3b934ea0f571a15d42d19c9e8869156c96a730 RLBA-2023:0108 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * vdo-vol: If the underlying device used does not exist, then the probe will always fail (BZ#2144866) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.3.x86_64.rpm d85f55cee7767a3b920412adf85ceca4b02d388c95389e94a500fcb596375c55 resource-agents-aliyun-4.9.0-29.el8_7.3.x86_64.rpm f1e895ece9aa8971f304f64095377933cfd4b42d55ed18c248a87ff5bd83417b resource-agents-gcp-4.9.0-29.el8_7.3.x86_64.rpm 8fb6ebc397e607ad02dca8894770938cdeedf9a58d7355bea03e3fee0171794f resource-agents-paf-4.9.0-29.el8_7.3.x86_64.rpm cec75b73556df3fda912cc3c7ccd8744331d4ca3a3cb113ff41dd9b41ab8e965 RLBA-2023:0127 pcs bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Bug Fix(es) and Enhancement(s): * 'pcs resource config' fails to print boolean attributes set to false. (BZ#2151577) rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.14-5.el8_7.1.x86_64.rpm 5474796b40947d531f29720c6f90b23c44f0d2e4c46b5dc45b5fd47c25d70f20 pcs-snmp-0.10.14-5.el8_7.1.x86_64.rpm 7bdb29850320d19e80af337701069534f1bd6d16a4768bf63d4373ad5cd831df RLBA-2022:7443 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.2.x86_64.rpm 62d51688a45a7353f739566ea85fbc99cd8dba11108068a8b59835d037d94b69 resource-agents-aliyun-4.9.0-29.el8_7.2.x86_64.rpm 3b9463bf1b936c31630f2ce3e35746905b50402905053e6e2cf14797c5e20ec9 resource-agents-gcp-4.9.0-29.el8_7.2.x86_64.rpm f67bc18bee7a6c18dd0e60e69b13f269922b2dc54249451d9da9357a8f14c4c5 resource-agents-paf-4.9.0-29.el8_7.2.x86_64.rpm a075a6646c5a475d05d64e2bfd3b934ea0f571a15d42d19c9e8869156c96a730 RLSA-2023:0855 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * sinatra: Reflected File Download attack (CVE-2022-45442) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.14-5.el8_7.2.x86_64.rpm 5e4057de4a4f7381779f9ca1ac1f5c1277ef39bbf8db4cc42d1900a646ce1231 pcs-snmp-0.10.14-5.el8_7.2.x86_64.rpm 0689945253d70f9f9c71f073e2f765023a093f41a7957a4dee6765fdd2e3a480 RLBA-2023:1585 corosync-qdevice bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The corosync-qdevice package contains the Corosync Cluster Engine Qdevice, a script for creating NSS certificates and an init script. Bug Fix(es) and Enhancement(s): * corosync-qdevice service dies sometime after the network with the quorum device is lost (BZ#2180246) rocky-linux-8-x86-64-highavailability-rpms corosync-qdevice-3.0.1-1.el8_7.1.x86_64.rpm d123f1033370b651d1d16312b9a76a904ba695bfe8adaada41a239af497c6890 corosync-qnetd-3.0.1-1.el8_7.1.x86_64.rpm e0b067061d46d71373e0f58464519aa98c29a596251a8d5290a0157fff2a932f RLSA-2023:3082 Moderate: pcs security and bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Denial of service in Multipart MIME parsing (CVE-2023-27530) * rubygem-rack: denial of service in header parsing (CVE-2023-27539) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Command 'pcs config checkpoint diff' does not show configuration differences between checkpoints (BZ#2180700) * Need a way to add a scsi fencing device to a cluster without requiring a restart of all cluster resources (BZ#2180706) rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.15-4.el8_8.1.x86_64.rpm c2fa4bb12980ec8730c6b3c6bf5572dd65816600c12004eb396ca3dbf5f4f583 pcs-snmp-0.10.15-4.el8_8.1.x86_64.rpm 274149b31ce3c2852d53be15a8af51303b6b6c0e7a46f7ec07f709d9709eeca6 RLBA-2023:4540 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * azure-events-az fails with pacemaker => 2.1 with missing transition summary (BZ#2182761) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-40.el8_8.1.x86_64.rpm 3e6432175e3b9bdb7c1658b8fa45cfd90562580343ec22ce05318b190364496e resource-agents-aliyun-4.9.0-40.el8_8.1.x86_64.rpm 592312d088bff67e15ef2f086e92b7fc4a5b57f49ee9f50a7c7bf1eb18ced7a5 resource-agents-gcp-4.9.0-40.el8_8.1.x86_64.rpm 5c0a4a27548f387d81fae18d2eb3266906ea1b69df345d6ec1665f9cbff3e8cc resource-agents-paf-4.9.0-40.el8_8.1.x86_64.rpm 8c8a7ce41b2bc099789cd12dca0583ff8be75dc5184ffd11456e44e4554fa93d RLSA-2024:2953 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing (CVE-2024-25126) * rubygem-rack: Possible DoS Vulnerability with Range Header in Rack (CVE-2024-26141) * rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing (CVE-2024-26146) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.x86_64.rpm 5d444e47106f75f4fdc900e3a031d67f11583005e91f2112c9c6fc51bf7cb899 pcs-snmp-0.10.18-2.el8_10.x86_64.rpm 274f0056959f3ea18c69bc44b0847de30c81e1318ae0b636a79477d033cfb058 RLBA-2024:3239 kronosnet bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms libknet1-1.28-1.el8.i686.rpm 479c7bd76fd21b995aa8f5c69df5bd511437ffe595dec012bbedd1ca501541fd libknet1-1.28-1.el8.x86_64.rpm cc263d1bf1c5a7c5fca400120a36ca1b84d081174f1edd3ad126e5a8bd5bf416 libknet1-compress-bzip2-plugin-1.28-1.el8.x86_64.rpm 8051f3fe5bc1a3f5f96fa83043d1480567fb04415767490f93e641d022f48bea libknet1-compress-lz4-plugin-1.28-1.el8.x86_64.rpm 30dbcbc0638d7b13b539f613d868286a3751db46b528829c60740be95cd98b3a libknet1-compress-lzma-plugin-1.28-1.el8.x86_64.rpm f0bc276c990583aff5e08a7b63e0695ad4f508be46123a72a3f6c6223a5d3d5b libknet1-compress-lzo2-plugin-1.28-1.el8.x86_64.rpm c319f70fc65a070114b33296eec91e7d0af7c866ab4be70c0ce47db0d0be0970 libknet1-compress-plugins-all-1.28-1.el8.x86_64.rpm 8c01b32feba9f38f83f7310ec6faf3cee2530ac00624d4e3047b3843ed1165b4 libknet1-compress-zlib-plugin-1.28-1.el8.x86_64.rpm 86c561ef2b93c7c567cf99c25af1eca6173631963cf51a925d5ce16826471e77 libknet1-crypto-nss-plugin-1.28-1.el8.x86_64.rpm c37a56ef8a7bd49271aec228ad2613bf4c24824d7aa51e0e816b82dd049a3a71 libknet1-crypto-openssl-plugin-1.28-1.el8.x86_64.rpm c15b7b6d65356f13303e14809afa7d4c69deddc17c152bb910c273f46bc9d30e libknet1-crypto-plugins-all-1.28-1.el8.x86_64.rpm 1a9572f0949f99a5d9f8fdcbdbcf708aa1f0e03008a5ba27c3067bbc6ea8961e libknet1-plugins-all-1.28-1.el8.x86_64.rpm 584c368ee5d721c140a37dc1c43fccb9df75b9f07c5fe46e628131c53e7e2c8f libnozzle1-1.28-1.el8.i686.rpm d896636c0a31a3f83397b20b76ec8c771a4935470ee0bcd5da0c0225e76bf182 libnozzle1-1.28-1.el8.x86_64.rpm e06da1663dcee5c2abf7c80278cd5312731074dc2480f30f88cfcd8f81c9d0d9 RLSA-2024:3659 Important: booth security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The Booth cluster ticket manager is a component to bridge high availability clusters spanning multiple sites, in particular, to provide decision inputs to local Pacemaker cluster resource managers. It operates as a distributed consensus-based service, presumably on a separate physical network. Tickets facilitated by a Booth formation are the units of authorization that can be bound to certain resources. This will ensure that the resources are run at only one (granted) site at a time. Security Fix(es): * booth: specially crafted hash can lead to invalid HMAC being accepted by Booth server (CVE-2024-3049) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.1-1.el8_10.1.x86_64.rpm ab35b10176c50de0ae9b0f6ca4b1d22d37e879ac8e3bc2b2153cfb3652b1855e booth-arbitrator-1.1-1.el8_10.1.noarch.rpm 682b82af4350f9645ab5dbe3851f372ea0b36923f5eee26330097e5a69cf9de6 booth-core-1.1-1.el8_10.1.x86_64.rpm dd25a5ce01f576e38920d3f335afc0c1debdf25895a89df78b7dd3b220c7a16b booth-site-1.1-1.el8_10.1.noarch.rpm bb50d5f23970b63e457e065b12b0137b1692816ce2d5744d6e3eeb645a43ed28 booth-test-1.1-1.el8_10.1.noarch.rpm afe6b462d734c9175a6012f50350cabc524e9ac710bf10d14dcdc159d75391f1 RLBA-2024:4225 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * db2: fix OCF_SUCESS name in db2_notify (Rocky Linux-32828) * [RFE] aws-vpc-move-ip: add retry mechanism to get EC2_INSTANCE_ID [rhel-8.10.z] (Rocky Linux-34137) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.1.x86_64.rpm 370e2114e716070ae2ebafc1fd5e33a1a1c092c8f26cd196d8fb2baaa4f396ef resource-agents-aliyun-4.9.0-54.el8_10.1.x86_64.rpm 64ee6258ff1c1dc1e5178f903188aaa6d8b212deb16a509f59dce24fc8e56a46 resource-agents-gcp-4.9.0-54.el8_10.1.x86_64.rpm ecdeca0443b0a1d5fbd05b50941b4905cd6d4387da46b29da7ecd75639b29e8e resource-agents-paf-4.9.0-54.el8_10.1.x86_64.rpm 3bbc3f268189b7df8f28355ea628a6ec550f9ccc46816291d5d43d6cae16be19 RLSA-2024:6670 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]> (CVE-2024-41123) * rexml: DoS vulnerability in REXML (CVE-2024-41946) * rexml: DoS vulnerability in REXML (CVE-2024-43398) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.2.x86_64.rpm 47d3dc7de0719a90d000b25dd16d55c7a2c9417e458601f3f14250715c426cc8 pcs-snmp-0.10.18-2.el8_10.2.x86_64.rpm bc4cacaa318be5a833bfca5d16298bf3091a5024351253a9d7a1c18b7e53d636 RLBA-2024:8872 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * nfsserver fails to stop when `nfsv4_only=true` [rhel-8.10.z] (JIRA:Rocky Linux-61138) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.5.x86_64.rpm f0ffe0bbae48b65f1211ec8cbd290565241a07006f7997a63fc62362004c1cc3 resource-agents-aliyun-4.9.0-54.el8_10.5.x86_64.rpm d4d99113c96365a7721e2d21615316d8e6c33baa385a202d2c0cc91d2205f709 resource-agents-gcp-4.9.0-54.el8_10.5.x86_64.rpm c00e54dc61a62cf613132cdddaca69681972a5ee9c3416427cea138301e1d9a7 resource-agents-paf-4.9.0-54.el8_10.5.x86_64.rpm 311efdb9e49db4cd006086436a9b18abf793294ac53bad79be4e308b7fbda79c RLSA-2024:10987 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * sinatra: Open Redirect Vulnerability in Sinatra via X-Forwarded-Host Header (CVE-2024-21510) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.3.x86_64.rpm bf4480f078d0322077e5633ffa5cdb8f22e067c109c176c127efcc1fbceac33d pcs-snmp-0.10.18-2.el8_10.3.x86_64.rpm d6322bccb0afeccbd8b23bdcab1a19049efd155821cb1f469ea278183d3b5927 RLBA-2024:11204 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * Filesystem: fix to avoid killing unrelated processes [rhel-8.10.z] (JIRA:Rocky Linux-69297) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.6.x86_64.rpm 8d21b4cc53232a6cf6b3fbb339cb05348a1ec97159fb9ac4589d401ee634b3ee resource-agents-aliyun-4.9.0-54.el8_10.6.x86_64.rpm b05ea221d78d14747cbbe9520abb7a65a149414d1067d363a78351f396df806c resource-agents-gcp-4.9.0-54.el8_10.6.x86_64.rpm c567d052f6d825bd3ba18375de0d470098a3d42e7a9efe2f34d7b350733afd62 resource-agents-paf-4.9.0-54.el8_10.6.x86_64.rpm 2151a552a0ca44e189e96c63131543fbc7e8288250d0212ac49da9bb7eee8741 RLBA-2025:0779 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * The "openstack-cinder-volume" resource agent's start operation can report "started" before it's actually ready to provide storage [rhel-8.10.z] (JIRA:Rocky Linux-72956) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.8.x86_64.rpm c945597497c5ed20fdcac9e6da72937c95719844cd1f9c347dc00e56368004a2 resource-agents-aliyun-4.9.0-54.el8_10.8.x86_64.rpm 376b85249349d8ba08fc5b73483d0aee484d070906a62a5f84e7acdd5d92c6c7 resource-agents-gcp-4.9.0-54.el8_10.8.x86_64.rpm f15462134eb74bad51e577a19581f0b81ace203b1fecb87fc469a33a2310eedf resource-agents-paf-4.9.0-54.el8_10.8.x86_64.rpm cfc55e1765e4973d001a3808bc4844946db1286dd6eee39e6bc9b79e6a077dec RLSA-2024:2952 Moderate: resource-agents security and bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * urllib3: Request body not stripped after redirect from 303 status changes request method to GET (CVE-2023-45803) * pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8.x86_64.rpm 54dcb86fc246cfe125865fe371141d60e9387240eb98121db5e0925b2ce1e352 resource-agents-aliyun-4.9.0-54.el8.x86_64.rpm 648fcf052073ecced3c44e6aba9eb5ac3f68ce692aaed2cf991b3e80307240be resource-agents-gcp-4.9.0-54.el8.x86_64.rpm fe95fff7a10afa3ee207f0746adec9ad48a70900cf4be9c4ef613ef3173c1f14 resource-agents-paf-4.9.0-54.el8.x86_64.rpm db605e26eb9507c9e06dab5d64616b8e2195d8112be76aa4392844da129d2ba4 RLBA-2024:2954 booth bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.1-1.el8.x86_64.rpm 90e501cf2791d2b11753e836d4c42757958f0c461a28294ea0ba3e3b811dd176 booth-arbitrator-1.1-1.el8.noarch.rpm 6978db21aa523d8a44123ca5368c629b08e87bdb035a070dab06e7d06d3774c4 booth-core-1.1-1.el8.x86_64.rpm 6d4a08c480c66e5a18cac57b5aba639c5242c5ba933a66a99665e8b11c98cea0 booth-site-1.1-1.el8.noarch.rpm 5982bf4a914d8dfd04323da991ccdbc28cd917548c371e56c658f71854791cc3 booth-test-1.1-1.el8.noarch.rpm 9c387866327e8d7dd6882e961d7970f6399ff3e4f7a13ec82839f902d1a25a67 RLSA-2024:5338 Low: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Low

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * REXML: DoS parsing an XML with many `<`s in an attribute value (CVE-2024-35176) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.1.x86_64.rpm f7e220d5bbf1bcf05fe463c7eaa576bc054ce462754d3f140de2338574a605e1 pcs-snmp-0.10.18-2.el8_10.1.x86_64.rpm cea55b8c2520ba7a106a71fa8394b4e2346ea127c5a059143f0969c06a78d22d RLSA-2024:6311 Moderate: resource-agents security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891) * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.4.x86_64.rpm 8b65fe953bfb08afced622aed7d3c6db6b03886a3252202f3ab31daf6616a1a9 resource-agents-aliyun-4.9.0-54.el8_10.4.x86_64.rpm e66b5c46e20943c35db2334dc3a177c2beeb44eddc728f731d0329cfaa11faf1 resource-agents-gcp-4.9.0-54.el8_10.4.x86_64.rpm ddbec70ab2e1f96b67a1bb689e839a265f6a870b12f12592642d8ec378b3d073 resource-agents-paf-4.9.0-54.el8_10.4.x86_64.rpm 51d5147e8a5bb3498ae03726956a4b0aeabb170ab2c95446e7200d4673989401 RLBA-2025:2613 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * portblock: fix iptables version detection [rhel-8.10.z] (JIRA:Rocky Linux-79823) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.10.x86_64.rpm 605cb746a3e9dd7b69ebd42de525c6048b93f22589c5caf5945251218caae70a resource-agents-aliyun-4.9.0-54.el8_10.10.x86_64.rpm a3ab81c652adef4a0c7ffe69dd5d41f1e54679c20d00e12d759efa97d5460493 resource-agents-gcp-4.9.0-54.el8_10.10.x86_64.rpm 150eb4db67fb5ca72d6e60d2e05c848eabe66350ef9f05fefb7af39c1a24829d resource-agents-paf-4.9.0-54.el8_10.10.x86_64.rpm 12a1896cb64894f2132b4023900b5583053f5c86d4f25a89ac83fb4465ffbb9e RLSA-2025:2872 Important: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * python-tornado: Tornado has HTTP cookie parsing DoS vulnerability (CVE-2024-52804) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.4.x86_64.rpm b1674e67d9001e7bdc7bf4c09b284ca9a51b060df17c8613e1d960683aa68f97 pcs-snmp-0.10.18-2.el8_10.4.x86_64.rpm c06a4f6b276f3682533e74a8dd5057d73b70c90ea4ee9b4627a79c598e7d4ede RLSA-2025:8254 Important: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Unbounded-Parameter DoS in Rack::QueryParser (CVE-2025-46727) * tornado: Tornado Multipart Form-Data Denial of Service (CVE-2025-47287) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.5.x86_64.rpm 233a9130aba79690d08c052951383c3f407d18df1b485a19152e244f74882a23 pcs-snmp-0.10.18-2.el8_10.5.x86_64.rpm 1736c2a86900e91c82b03d1c26effc8ef2894f951b6a7fa6f550574cb71a9402 RLSA-2025:11047 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rexml: REXML ReDoS vulnerability (CVE-2024-49761) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.6.x86_64.rpm 5d081cf3b3481e2e1cfb43b1777e32e7ded382736ac659fdbbae528b7dc02226 pcs-snmp-0.10.18-2.el8_10.6.x86_64.rpm e5c69ad5dce039b37b8f9d42d59d24c45403ed9b54b6048251cc17c417b794e2 RLSA-2025:14999 Moderate: resource-agents security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * requests: Requests vulnerable to .netrc credentials leak via malicious URLs (CVE-2024-47081) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.16.x86_64.rpm 953cb5ab647a7316b22f80a7d6d044b432a2b9e58f0de31bd42ac24f6e76bade resource-agents-aliyun-4.9.0-54.el8_10.16.x86_64.rpm e2281929cd37714054c2f1f82a8907aa19f15319f65505cc2de90e8e62529a84 resource-agents-gcp-4.9.0-54.el8_10.16.x86_64.rpm f8a0b8444244a8a6b7ba1a520430339e46b9879eafc361e65e334674dc315f98 resource-agents-paf-4.9.0-54.el8_10.16.x86_64.rpm 8043b3750f7050e58e6d24c9dd890a3904f85bb438c8f57be7993f992c9f0843 RLSA-2025:19719 Important: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Rack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters (CVE-2025-59830) * rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion) (CVE-2025-61770) * rack: Rack's multipart parser buffers large non?file fields entirely in memory, enabling DoS (memory exhaustion) (CVE-2025-61771) * rack: Rack memory exhaustion denial of service (CVE-2025-61772) * rubygem-rack: Unbounded read in `Rack::Request` form parsing can lead to memory exhaustion (CVE-2025-61919) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.7.x86_64.rpm ccb9c367e29161b6f85d2f90e7d9cde1d61d856d126728e3c6b821634583f7ca pcs-snmp-0.10.18-2.el8_10.7.x86_64.rpm ab7e037ed2a859116d94f19cad78adeb2aee2efec27d174251b3050ed8c09171