1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2023-b86fd9ad80

[FEDORA-2023-b86fd9ad80] Fedora 38: pcs

Severity High
Affected Packages 1
CVEs 1
Info Packages References Vulnerabilities
  • Rebased to the latest upstream sources (see CHANGELOG.md) - Updated pcs-web-ui
  • Removed dependency fedora-logos - favicon is now correctly provided by pcs- web-ui - Resolves: rhbz#2109852 rhbz#2170648
Package Affected Version
pkg:rpm/fedora/pcs?distro=fedora-38 < 0.11.6.1.fc38
ID
FEDORA-2023-b86fd9ad80
Severity
high
Severity from
CVE-2022-38900
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2023-b86fd9ad80
Published
2023-07-01T01:46:23
(14 months ago)
Modified
2023-07-01T01:46:23
(14 months ago)
Rights
Copyright 2023 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2170648 Bug #2170648 - CVE-2022-38900 pcs: decode-uri-component: improper input validation resulting in DoS [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2170648
Bugzilla 2109852 Bug #2109852 - No output from pcs resource disable --simulate --brief https://bugzilla.redhat.com/show_bug.cgi?id=2109852
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/pcs?distro=fedora-38 fedora pcs < 0.11.6.1.fc38 fedora-38
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date