RHSA-2023:3403
- Source
- https://access.redhat.com/errata/RHSA-2023:3403
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2023:3403.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2023:3403
- Related
- Published
- 2024-09-30T16:34:03Z
- Modified
- 2024-10-29T19:37:10Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: pcs security and bug fix update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2023:3403
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=2176477
- https://bugzilla.redhat.com/show_bug.cgi?id=2179649
- https://bugzilla.redhat.com/show_bug.cgi?id=2180702
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3403.json
- https://access.redhat.com/security/cve/CVE-2023-27530
- https://www.cve.org/CVERecord?id=CVE-2023-27530
- https://nvd.nist.gov/vuln/detail/CVE-2023-27530
- https://discuss.rubyonrails.org/t/cve-2023-27530-possible-dos-vulnerability-in-multipart-mime-parsing/82388
- https://github.com/rubysec/ruby-advisory-db/tree/master/gems/rack/CVE-2023-27530.yml
- https://access.redhat.com/security/cve/CVE-2023-27539
- https://www.cve.org/CVERecord?id=CVE-2023-27539
- https://nvd.nist.gov/vuln/detail/CVE-2023-27539
- https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2023-27539.yml
- https://rubysec.com/advisories/CVE-2023-27539/
Affected packages
Red Hat:rhel_eus:8.6::highavailability / pcs
Package
- Name
- pcs
- Purl
- pkg:rpm/redhat/pcs
Red Hat:rhel_eus:8.6::highavailability / pcs-snmp
Package
- Name
- pcs-snmp
- Purl
- pkg:rpm/redhat/pcs-snmp
Red Hat:rhel_eus:8.6::resilientstorage / pcs
Package
- Name
- pcs
- Purl
- pkg:rpm/redhat/pcs