corosync bug fix and enhancement update

An update is available for corosync. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms corosync-3.1.5-2.el8.x86_64.rpm 3a409c2d4d06521654d296c859e9a21ec836a489021babfa2910e5b5760fa846 corosynclib-devel-3.1.5-2.el8.x86_64.rpm d08ed4c70500b7d43848c1d949f94a661477d67203c13a0a1abbc8c9d6d9a48c spausedd-3.1.5-2.el8.x86_64.rpm a094b7a0566b7d7c58559b0572f39a6e2aa740b5e75935bf7fd5d272bb0d1dc0 RLBA-2022:7520 fence-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for fence-agents. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-103.el8.x86_64.rpm 397ff5508dc94c85bcaa43e0ff0cb9f731ce853896df2438f79dbd1669054a82 fence-agents-aws-4.2.1-103.el8.noarch.rpm 8330ab06e12f43bae8a5a7f694a5d273419f5bd825382e9efcc556add3e05c52 fence-agents-azure-arm-4.2.1-103.el8.noarch.rpm cf5f8cf811839a88bd8130a72f1b06da78ef42a3f21081256ccafbd2d38394ee fence-agents-gce-4.2.1-103.el8.noarch.rpm 711384984265c124961bdf09b82d2fc464a8005660e5d9770c8d2a4f96514d70 fence-agents-openstack-4.2.1-103.el8.x86_64.rpm 9dcbe2d4c79d01912d8eb2fc0b766db6388f395560e001bc2f0a7d4563597aaa RLBA-2022:7833 pacemaker bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for pacemaker. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug fix(es) and Enhancement(s): * Running crm_node from an OCF resource agent's metadata action will hang until the timeout is reached because metadata actions block the controller (BZ#2125588) * Resources that are reordered in the CIB are not moved until the next natural transition (BZ#2125589) * Resource agents that call crm_mon in their monitor action, such as ocf:heartbeat:pgsql, may incorrectly return a failure at cluster shutdown (BZ#2133830) rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.4-5.el8_7.2.x86_64.rpm 08f7ef182edd055cd97afb66e0c03aa13a24385955d768f902d08cdf5f582378 pacemaker-cli-2.1.4-5.el8_7.2.x86_64.rpm 5f3e6f08812bced68d1416bd9c0db123315313b06446baca3aa4f2f8b8e73a77 pacemaker-cts-2.1.4-5.el8_7.2.noarch.rpm 552913a64c186f8ca6060360ee7d3293e3f2a7fcddb86ab9d40ff2e78a08bb29 pacemaker-doc-2.1.4-5.el8_7.2.noarch.rpm 46e32d956ea3ef90debb6206bdf000d909363855e7b9138eb47f4861ab2a595f pacemaker-libs-devel-2.1.4-5.el8_7.2.x86_64.rpm 3f1c8471694107559a54c94125520359b44731c61eae741caa0af706e73044fe pacemaker-nagios-plugins-metadata-2.1.4-5.el8_7.2.noarch.rpm 7d0ea13b54906097007ec155a9b9bc883aa3cf80e50081e599033f7df5c1939b pacemaker-remote-2.1.4-5.el8_7.2.x86_64.rpm 276a1a9057a9630ad3d4cffde8df2f6978dd04ded0bc33cb2975818e1fd27d05 RLEA-2019:3314 python3-azure-sdk bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for python3-azure-sdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms python3-azure-sdk-4.0.0-9.el8.noarch.rpm aa7cd4bd1d321e0b302bf94afab40b115c5b5d034382f088f5974b59dfcf54f6 RLBA-2020:3148 Rocky Enterprise Software Foundation OpenStack Platform 16.1 bug fix and enhancement advisory Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for python-gflags, python-oauth2client, google-api-python-client, python-httplib2, python-uritemplate. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. For additional information about the items in this advisory, refer to the Technical Notes chapter of the Release Notes, https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html/release_notes/chap-technical_notes rocky-linux-8-x86-64-highavailability-rpms python3-gflags-2.0-13.el8.noarch.rpm 8cac8dc7fe48f077355f298618945b2792ac9abd033ad53edc5eeea17ca9cf7c python3-google-api-client-1.6.5-3.el8.noarch.rpm 2ce75f035008a471ebbf565ec52f63568abcf338cdd7d5994d2de7b2b7001c56 python3-httplib2-0.10.3-4.el8.noarch.rpm 6e8b831ea4c97e85d08e061f6ed8f03ffd62a7ab0df8bc9b2f3222fd2c33e8b7 python3-oauth2client-4.1.2-6.el8.noarch.rpm c2725cc8a16722c6642621a1a479d94bf8da307834b1d80178b5ad71fab363b9 python3-uritemplate-3.0.0-3.el8.noarch.rpm a5d0d004c1b556772f5de2ca54e28a561aea0f0d4186343418f1bb8416493455 RLBA-2021:1740 corosync-qdevice bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for corosync-qdevice. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 8.4 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms corosync-qdevice-3.0.1-1.el8.x86_64.rpm 0dda6940be2f453797a5da6bfa67e025258035a5a90c04286ac2dc552f32a93f corosync-qnetd-3.0.1-1.el8.x86_64.rpm cad5c81daed65fd7eef0153650f76e752936b264692f123bdd4fdaf84eb4d495 RLEA-2021:3483 Rocky Enterprise Software Foundation OpenStack Platform (RHOSP) 16.2 enhancement advisory Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for google-api-python-client, python-gflags, python-oauth2client, python-uritemplate. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. For additional information about the items in this advisory, refer to the Technical Notes chapter of the Release Notes, https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16 .2/html/release_notes/chap-technical_notes rocky-linux-8-x86-64-highavailability-rpms python3-gflags-2.0-13.el8.noarch.rpm 8cac8dc7fe48f077355f298618945b2792ac9abd033ad53edc5eeea17ca9cf7c python3-google-api-client-1.6.5-3.el8.noarch.rpm 2ce75f035008a471ebbf565ec52f63568abcf338cdd7d5994d2de7b2b7001c56 python3-oauth2client-4.1.2-6.el8.noarch.rpm c2725cc8a16722c6642621a1a479d94bf8da307834b1d80178b5ad71fab363b9 python3-uritemplate-3.0.0-3.el8.noarch.rpm a5d0d004c1b556772f5de2ca54e28a561aea0f0d4186343418f1bb8416493455 RLBA-2022:7445 awscli bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for awscli. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms awscli-1.23.2-1.el8.noarch.rpm ac10e3a749343120ee7cdbc695e3a203dfff08902e458f292f17a001a1ffaba1 RLSA-2022:7447 Moderate: pcs security, bug fix, and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

An update is available for pcs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * pcs: improper authentication via PAM (CVE-2022-1049) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-snmp-0.10.14-5.el8.x86_64.rpm f6b5146fd06dcc7495b43f3284b98f54dd620e20d26d3dfed2f43db48c2690c4 pcs-0.10.14-5.el8.x86_64.rpm 22c2c8172966c7120a295629ce9a0c129a5089e543a168b727ddd8b7be5d592f RLBA-2022:7454 booth bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for booth. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.0-199.2.ac1d34c.git.el8.x86_64.rpm fdd3b6a08f890d7665ee0215a16e91e34b886f1a1ad0dbe0d875f10d013b0341 booth-arbitrator-1.0-199.2.ac1d34c.git.el8.noarch.rpm 6bde07ed2cbf728a7a1e7cea0155f5073747401047b072b55efefd176553e716 booth-core-1.0-199.2.ac1d34c.git.el8.x86_64.rpm c0532a0a71fc662329554cdf9ccc2ec3505db3aa71b6402cbaca0aaf5b61924e booth-site-1.0-199.2.ac1d34c.git.el8.noarch.rpm 0de36f517ccbb9fe472995e866243e82ec8e3f16b1d96c748d2b3a40ffac123f booth-test-1.0-199.2.ac1d34c.git.el8.noarch.rpm 19010dc94aa1435246540affaec7b27768cdc17d7f1bd1325479eec9d1652053 RLBA-2022:7815 kronosnet bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for kronosnet. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms libknet1-1.24-2.el8.x86_64.rpm c47aa11ed5bedc2c7041becda3a67d03e63d5af4fa1c9948e36c1fc5b9dd11c6 libknet1-compress-bzip2-plugin-1.24-2.el8.x86_64.rpm b4e9c84f1a252d9a02b8f0336058e4b14191ed21b42d82c180cff2f7e48e2ff6 libknet1-compress-lz4-plugin-1.24-2.el8.x86_64.rpm 1fb49ca0d2871446caee5e0dadd0c6e3b8aad4ff2b1bc703d49b442127717123 libknet1-compress-lzma-plugin-1.24-2.el8.x86_64.rpm 163634bd60249d72611877e789d226079cd94081805b36b438886b91d1ba8700 libknet1-compress-lzo2-plugin-1.24-2.el8.x86_64.rpm c780d9000c8c736e14c342e71970414b4671d69aaa76500e46bda6134eb222d5 libknet1-compress-plugins-all-1.24-2.el8.x86_64.rpm fc6fb64301c9a816e9b0a25238c5720d5480f33a410c9db80c70ad81f74a9270 libknet1-compress-zlib-plugin-1.24-2.el8.x86_64.rpm 6e71ff8baf04af6cc538ad330708ecdd61dfc1b207024d6e72cc6b746e19fd57 libknet1-crypto-nss-plugin-1.24-2.el8.x86_64.rpm 01de6ec63ec3752e68aa7ebeca3cb56028a305fd50469e332df84f90ef538659 libknet1-crypto-openssl-plugin-1.24-2.el8.x86_64.rpm 4abdcb909f784d2701199a3929bb2d87cd7090baa5f03b1f67640fad50477430 libknet1-crypto-plugins-all-1.24-2.el8.x86_64.rpm 5190c10faecb28e92c4522209c0e2300a002db6659dbcc1253478d1f405f148b libknet1-plugins-all-1.24-2.el8.x86_64.rpm 5b8cc2c50eacfde090d734590a8dba501f79987ca1e4bfb34116fe3ee2a7b394 libnozzle1-1.24-2.el8.x86_64.rpm 885cfdf51a2c6bca59c0f1de2feaae8bcd4b0662c14ce04f5cedd628823468dc RLEA-2022:7823 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

An update is available for resource-agents. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * azure-events-az: Resource agent azure-events testing issue (BZ#2130986) * IPsrcaddr: Fail to perform the stop operation with `Error: Invalid scope` (BZ#2134536) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.2.x86_64.rpm 62d51688a45a7353f739566ea85fbc99cd8dba11108068a8b59835d037d94b69 resource-agents-aliyun-4.9.0-29.el8_7.2.x86_64.rpm 3b9463bf1b936c31630f2ce3e35746905b50402905053e6e2cf14797c5e20ec9 resource-agents-gcp-4.9.0-29.el8_7.2.x86_64.rpm f67bc18bee7a6c18dd0e60e69b13f269922b2dc54249451d9da9357a8f14c4c5 resource-agents-paf-4.9.0-29.el8_7.2.x86_64.rpm a075a6646c5a475d05d64e2bfd3b934ea0f571a15d42d19c9e8869156c96a730 RLBA-2023:0108 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * vdo-vol: If the underlying device used does not exist, then the probe will always fail (BZ#2144866) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.3.x86_64.rpm d85f55cee7767a3b920412adf85ceca4b02d388c95389e94a500fcb596375c55 resource-agents-aliyun-4.9.0-29.el8_7.3.x86_64.rpm f1e895ece9aa8971f304f64095377933cfd4b42d55ed18c248a87ff5bd83417b resource-agents-gcp-4.9.0-29.el8_7.3.x86_64.rpm 8fb6ebc397e607ad02dca8894770938cdeedf9a58d7355bea03e3fee0171794f resource-agents-paf-4.9.0-29.el8_7.3.x86_64.rpm cec75b73556df3fda912cc3c7ccd8744331d4ca3a3cb113ff41dd9b41ab8e965 RLBA-2023:0127 pcs bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Bug Fix(es) and Enhancement(s): * 'pcs resource config' fails to print boolean attributes set to false. (BZ#2151577) rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.14-5.el8_7.1.x86_64.rpm 5474796b40947d531f29720c6f90b23c44f0d2e4c46b5dc45b5fd47c25d70f20 pcs-snmp-0.10.14-5.el8_7.1.x86_64.rpm 7bdb29850320d19e80af337701069534f1bd6d16a4768bf63d4373ad5cd831df RLBA-2022:7573 pacemaker bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.4-5.el8_7.2.x86_64.rpm 08f7ef182edd055cd97afb66e0c03aa13a24385955d768f902d08cdf5f582378 pacemaker-cli-2.1.4-5.el8_7.2.x86_64.rpm 5f3e6f08812bced68d1416bd9c0db123315313b06446baca3aa4f2f8b8e73a77 pacemaker-cts-2.1.4-5.el8_7.2.noarch.rpm 552913a64c186f8ca6060360ee7d3293e3f2a7fcddb86ab9d40ff2e78a08bb29 pacemaker-doc-2.1.4-5.el8_7.2.noarch.rpm 46e32d956ea3ef90debb6206bdf000d909363855e7b9138eb47f4861ab2a595f pacemaker-libs-devel-2.1.4-5.el8_7.2.x86_64.rpm 3f1c8471694107559a54c94125520359b44731c61eae741caa0af706e73044fe pacemaker-nagios-plugins-metadata-2.1.4-5.el8_7.2.noarch.rpm 7d0ea13b54906097007ec155a9b9bc883aa3cf80e50081e599033f7df5c1939b pacemaker-remote-2.1.4-5.el8_7.2.x86_64.rpm 276a1a9057a9630ad3d4cffde8df2f6978dd04ded0bc33cb2975818e1fd27d05 RLBA-2022:7443 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-29.el8_7.2.x86_64.rpm 62d51688a45a7353f739566ea85fbc99cd8dba11108068a8b59835d037d94b69 resource-agents-aliyun-4.9.0-29.el8_7.2.x86_64.rpm 3b9463bf1b936c31630f2ce3e35746905b50402905053e6e2cf14797c5e20ec9 resource-agents-gcp-4.9.0-29.el8_7.2.x86_64.rpm f67bc18bee7a6c18dd0e60e69b13f269922b2dc54249451d9da9357a8f14c4c5 resource-agents-paf-4.9.0-29.el8_7.2.x86_64.rpm a075a6646c5a475d05d64e2bfd3b934ea0f571a15d42d19c9e8869156c96a730 RLBA-2023:0843 fence-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Bug Fix(es) and Enhancement(s): * OCF Timeout occurring on fence_ibm_powervs (BZ#2136203) rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-103.el8_7.1.x86_64.rpm 34cdef689a46b089de8dd324231d98bbeccf18c1153095ac7aa60452a0059239 fence-agents-aws-4.2.1-103.el8_7.1.noarch.rpm 21411f5761ae76ad4f43ce6837d372f70d430b42414326d1a4ec133cfa3984a9 fence-agents-azure-arm-4.2.1-103.el8_7.1.noarch.rpm 9d5d9d7d65b0144648762e0c8521aeeabaaa2534045423e66063adc412024f5c fence-agents-gce-4.2.1-103.el8_7.1.noarch.rpm 02a6e26de29c92f7e011cc743fb3d0831f6b3e2b3da4731ccf2521b3e85902a2 fence-agents-openstack-4.2.1-103.el8_7.1.x86_64.rpm 09955a32cf6722cd024025b84b856862c742f562e9091a5a09a5777c196fea36 RLSA-2023:0855 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * sinatra: Reflected File Download attack (CVE-2022-45442) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.14-5.el8_7.2.x86_64.rpm 5e4057de4a4f7381779f9ca1ac1f5c1277ef39bbf8db4cc42d1900a646ce1231 pcs-snmp-0.10.14-5.el8_7.2.x86_64.rpm 0689945253d70f9f9c71f073e2f765023a093f41a7957a4dee6765fdd2e3a480 RLBA-2023:1585 corosync-qdevice bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The corosync-qdevice package contains the Corosync Cluster Engine Qdevice, a script for creating NSS certificates and an init script. Bug Fix(es) and Enhancement(s): * corosync-qdevice service dies sometime after the network with the quorum device is lost (BZ#2180246) rocky-linux-8-x86-64-highavailability-rpms corosync-qdevice-3.0.1-1.el8_7.1.x86_64.rpm d123f1033370b651d1d16312b9a76a904ba695bfe8adaada41a239af497c6890 corosync-qnetd-3.0.1-1.el8_7.1.x86_64.rpm e0b067061d46d71373e0f58464519aa98c29a596251a8d5290a0157fff2a932f RLSA-2023:3082 Moderate: pcs security and bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Denial of service in Multipart MIME parsing (CVE-2023-27530) * rubygem-rack: denial of service in header parsing (CVE-2023-27539) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Command 'pcs config checkpoint diff' does not show configuration differences between checkpoints (BZ#2180700) * Need a way to add a scsi fencing device to a cluster without requiring a restart of all cluster resources (BZ#2180706) rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.15-4.el8_8.1.x86_64.rpm c2fa4bb12980ec8730c6b3c6bf5572dd65816600c12004eb396ca3dbf5f4f583 pcs-snmp-0.10.15-4.el8_8.1.x86_64.rpm 274149b31ce3c2852d53be15a8af51303b6b6c0e7a46f7ec07f709d9709eeca6 RLBA-2023:3826 pacemaker bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug Fix(es): * [BDI] Pacemaker resources left UNCLEAN after controller node failure (BZ#2187419) rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.5-8.1.el8_8.x86_64.rpm 79f96254806a5c717d746bd0e9e47d13c65400862aef23f78fedabb90368aca0 pacemaker-cli-2.1.5-8.1.el8_8.x86_64.rpm 061614de2760f1cb69430a1a3f2ff5edea415f2c7c3416430604ff2c50e326ae pacemaker-cts-2.1.5-8.1.el8_8.noarch.rpm 4c73d4a72481aba9d388ca2c643ed6783f504aca058f1636c00f4873f5728c21 pacemaker-doc-2.1.5-8.1.el8_8.noarch.rpm 6c63cecb26dd7c6cb7de2027721c7a21ca53271f275766e1053b2f94e6f26e96 pacemaker-libs-devel-2.1.5-8.1.el8_8.x86_64.rpm f8b47abf1408a4b8d6007de17558bbd0d3e0ff9b139875e61bb1b1232b3890d9 pacemaker-nagios-plugins-metadata-2.1.5-8.1.el8_8.noarch.rpm a56e05d078c672510018e27bc66f4ee8002a79fe1cfae94b35399c49f2ba850b pacemaker-remote-2.1.5-8.1.el8_8.x86_64.rpm 466559606aa97fdf59438bc09f3eaebcf350dfd7f049d9e0543ce588752dea8e RLBA-2023:4540 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * azure-events-az fails with pacemaker => 2.1 with missing transition summary (BZ#2182761) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-40.el8_8.1.x86_64.rpm 3e6432175e3b9bdb7c1658b8fa45cfd90562580343ec22ce05318b190364496e resource-agents-aliyun-4.9.0-40.el8_8.1.x86_64.rpm 592312d088bff67e15ef2f086e92b7fc4a5b57f49ee9f50a7c7bf1eb18ced7a5 resource-agents-gcp-4.9.0-40.el8_8.1.x86_64.rpm 5c0a4a27548f387d81fae18d2eb3266906ea1b69df345d6ec1665f9cbff3e8cc resource-agents-paf-4.9.0-40.el8_8.1.x86_64.rpm 8c8a7ce41b2bc099789cd12dca0583ff8be75dc5184ffd11456e44e4554fa93d RLSA-2024:2968 Moderate: fence-agents security and bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fix(es): * urllib3: Request body not stripped after redirect from 303 status changes request method to GET (CVE-2023-45803) * pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323) * jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-129.el8.x86_64.rpm b77c8a5b88d9620cc3ac06b1fdc369553c1f89de05f727e864b8b98563afdca9 fence-agents-aws-4.2.1-129.el8.noarch.rpm d297c840a19b5c943412518b6ca9208e5999034cdb49bb4b2a5099e6554e02fc fence-agents-azure-arm-4.2.1-129.el8.noarch.rpm c85c7cc70261921afeccfb6045788836430a4d7176d23897b534f9af4866922b fence-agents-gce-4.2.1-129.el8.noarch.rpm 39b5f95506d974461ac7f473174121b5545f919881ee1aedc714e3538c3f008b fence-agents-openstack-4.2.1-129.el8.x86_64.rpm fe68b2d9e5e581bd54ac1f76101088aeb5abbe9ac4a75975ea6be73c014b73b6 RLBA-2024:3055 pacemaker bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.7-5.el8_10.x86_64.rpm 9ee4ba962afc60bf1a691641647e0a4cf4c93d39ee6242f1fb52eedb2b1f1ae5 pacemaker-cli-2.1.7-5.el8_10.x86_64.rpm 78a102dfed3227ae761d68021e003d8aa09ca28873a5947cad5aa5c5ab8c6499 pacemaker-cts-2.1.7-5.el8_10.noarch.rpm 9bf92a67432162114dfaf4a7e8dfbfd93e421138bfc9120d640c3dc1cae46042 pacemaker-doc-2.1.7-5.el8_10.noarch.rpm de9be410c27788f5964107ab147fd85dcc9ac1417e3a5dc85a60a5537c77d4b9 pacemaker-libs-devel-2.1.7-5.el8_10.x86_64.rpm c1223c09f7a07dd82f7b47157c87b88ab7e8f4a9d1aba53e1f066434f854cc2f pacemaker-nagios-plugins-metadata-2.1.7-5.el8_10.noarch.rpm 751f7b22a2b22c2b7a17d9cdd21607e0484f505353472509030b813871a25c3e pacemaker-remote-2.1.7-5.el8_10.x86_64.rpm f04f05d17164aa7ed67127d3f06859fc61c358db031db536b3556e2b50e3639e python3-pacemaker-2.1.7-5.el8_10.noarch.rpm bef406481e995bb8fd093e119138c9ce7710992e4434ec35f620e418494afc54 RLSA-2024:2953 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing (CVE-2024-25126) * rubygem-rack: Possible DoS Vulnerability with Range Header in Rack (CVE-2024-26141) * rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing (CVE-2024-26146) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.x86_64.rpm 5d444e47106f75f4fdc900e3a031d67f11583005e91f2112c9c6fc51bf7cb899 pcs-snmp-0.10.18-2.el8_10.x86_64.rpm 274f0056959f3ea18c69bc44b0847de30c81e1318ae0b636a79477d033cfb058 RLBA-2024:3239 kronosnet bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms libknet1-1.28-1.el8.x86_64.rpm cc263d1bf1c5a7c5fca400120a36ca1b84d081174f1edd3ad126e5a8bd5bf416 libknet1-compress-bzip2-plugin-1.28-1.el8.x86_64.rpm 8051f3fe5bc1a3f5f96fa83043d1480567fb04415767490f93e641d022f48bea libknet1-compress-lz4-plugin-1.28-1.el8.x86_64.rpm 30dbcbc0638d7b13b539f613d868286a3751db46b528829c60740be95cd98b3a libknet1-compress-lzma-plugin-1.28-1.el8.x86_64.rpm f0bc276c990583aff5e08a7b63e0695ad4f508be46123a72a3f6c6223a5d3d5b libknet1-compress-lzo2-plugin-1.28-1.el8.x86_64.rpm c319f70fc65a070114b33296eec91e7d0af7c866ab4be70c0ce47db0d0be0970 libknet1-compress-plugins-all-1.28-1.el8.x86_64.rpm 8c01b32feba9f38f83f7310ec6faf3cee2530ac00624d4e3047b3843ed1165b4 libknet1-compress-zlib-plugin-1.28-1.el8.x86_64.rpm 86c561ef2b93c7c567cf99c25af1eca6173631963cf51a925d5ce16826471e77 libknet1-crypto-nss-plugin-1.28-1.el8.x86_64.rpm c37a56ef8a7bd49271aec228ad2613bf4c24824d7aa51e0e816b82dd049a3a71 libknet1-crypto-openssl-plugin-1.28-1.el8.x86_64.rpm c15b7b6d65356f13303e14809afa7d4c69deddc17c152bb910c273f46bc9d30e libknet1-crypto-plugins-all-1.28-1.el8.x86_64.rpm 1a9572f0949f99a5d9f8fdcbdbcf708aa1f0e03008a5ba27c3067bbc6ea8961e libknet1-plugins-all-1.28-1.el8.x86_64.rpm 584c368ee5d721c140a37dc1c43fccb9df75b9f07c5fe46e628131c53e7e2c8f libnozzle1-1.28-1.el8.x86_64.rpm e06da1663dcee5c2abf7c80278cd5312731074dc2480f30f88cfcd8f81c9d0d9 RLSA-2024:3659 Important: booth security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The Booth cluster ticket manager is a component to bridge high availability clusters spanning multiple sites, in particular, to provide decision inputs to local Pacemaker cluster resource managers. It operates as a distributed consensus-based service, presumably on a separate physical network. Tickets facilitated by a Booth formation are the units of authorization that can be bound to certain resources. This will ensure that the resources are run at only one (granted) site at a time. Security Fix(es): * booth: specially crafted hash can lead to invalid HMAC being accepted by Booth server (CVE-2024-3049) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.1-1.el8_10.1.x86_64.rpm ab35b10176c50de0ae9b0f6ca4b1d22d37e879ac8e3bc2b2153cfb3652b1855e booth-arbitrator-1.1-1.el8_10.1.noarch.rpm 682b82af4350f9645ab5dbe3851f372ea0b36923f5eee26330097e5a69cf9de6 booth-core-1.1-1.el8_10.1.x86_64.rpm dd25a5ce01f576e38920d3f335afc0c1debdf25895a89df78b7dd3b220c7a16b booth-site-1.1-1.el8_10.1.noarch.rpm bb50d5f23970b63e457e065b12b0137b1692816ce2d5744d6e3eeb645a43ed28 booth-test-1.1-1.el8_10.1.noarch.rpm afe6b462d734c9175a6012f50350cabc524e9ac710bf10d14dcdc159d75391f1 RLBA-2024:4225 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * db2: fix OCF_SUCESS name in db2_notify (Rocky Linux-32828) * [RFE] aws-vpc-move-ip: add retry mechanism to get EC2_INSTANCE_ID [rhel-8.10.z] (Rocky Linux-34137) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.1.x86_64.rpm 370e2114e716070ae2ebafc1fd5e33a1a1c092c8f26cd196d8fb2baaa4f396ef resource-agents-aliyun-4.9.0-54.el8_10.1.x86_64.rpm 64ee6258ff1c1dc1e5178f903188aaa6d8b212deb16a509f59dce24fc8e56a46 resource-agents-gcp-4.9.0-54.el8_10.1.x86_64.rpm ecdeca0443b0a1d5fbd05b50941b4905cd6d4387da46b29da7ecd75639b29e8e resource-agents-paf-4.9.0-54.el8_10.1.x86_64.rpm 3bbc3f268189b7df8f28355ea628a6ec550f9ccc46816291d5d43d6cae16be19 RLBA-2024:5260 pacemaker bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug Fix(es): * Memory leak in pacemaker-attrd [rhel-8.10.z] (JIRA:Rocky Linux-40145) rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.7-5.1.el8_10.x86_64.rpm 78c92f17f05e8423d00e9d17f0ed530816b263afffc1865472f26ab3f09939ca pacemaker-cli-2.1.7-5.1.el8_10.x86_64.rpm e21511972b09914f657a4a824564ee88021da56b4595877db988f50907f466ad pacemaker-cts-2.1.7-5.1.el8_10.noarch.rpm 3e521cf7cff95308f7ccfbc8bae14f4238decf866e40a471948a5300a7435e51 pacemaker-doc-2.1.7-5.1.el8_10.noarch.rpm db747655452f25e72ef359c59d154ea598ef6261ad5619459e789cc38e9ca6f6 pacemaker-libs-devel-2.1.7-5.1.el8_10.x86_64.rpm 1bde5c957d27bebef502d55ae3d00fe565d3e62970b3fae23a2f70cbfec5d465 pacemaker-nagios-plugins-metadata-2.1.7-5.1.el8_10.noarch.rpm c39c590d75290bd0b720b3a6fa4b19faab407ff7dae3b4361a619b3eed3af60d pacemaker-remote-2.1.7-5.1.el8_10.x86_64.rpm 1d06b5035fa6657644303904356d9a0ef4d8d88b9387d4bf944efb2281745f66 python3-pacemaker-2.1.7-5.1.el8_10.noarch.rpm 32142138b0530202439fb0554524c8195e81b3bf54868fee471cf9f3b2e77e85 RLSA-2024:6670 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]> (CVE-2024-41123) * rexml: DoS vulnerability in REXML (CVE-2024-41946) * rexml: DoS vulnerability in REXML (CVE-2024-43398) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.2.x86_64.rpm 47d3dc7de0719a90d000b25dd16d55c7a2c9417e458601f3f14250715c426cc8 pcs-snmp-0.10.18-2.el8_10.2.x86_64.rpm bc4cacaa318be5a833bfca5d16298bf3091a5024351253a9d7a1c18b7e53d636 RLBA-2024:6965 pacemaker bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug Fix(es): * crm_node mishandles node IDs [rhel-8.10.z] (JIRA:Rocky Linux-49928) rocky-linux-8-x86-64-highavailability-rpms pacemaker-2.1.7-5.2.el8_10.x86_64.rpm c42ee85e267adbfa91bbc16fbd6ecb851f4329c974cf3c77fa4171c359cc51a1 pacemaker-cli-2.1.7-5.2.el8_10.x86_64.rpm 935843e916b5c1ffef840f1149190bf995acfec88172924107581903848aa823 pacemaker-cts-2.1.7-5.2.el8_10.noarch.rpm cc833e15a3b868380804b7a869fc96f4ac03bc8545b7bf1d5cc1c7924d02b89b pacemaker-doc-2.1.7-5.2.el8_10.noarch.rpm daf5d11213b53d9e4797e1fc941a4f860c017c7a2f7b79d260a9d0696f99e33e pacemaker-libs-devel-2.1.7-5.2.el8_10.x86_64.rpm 97504b56a272722a9dc92cf26180be78b7b907fc9864ff244313e5e3408319b5 pacemaker-nagios-plugins-metadata-2.1.7-5.2.el8_10.noarch.rpm 3ece13cd96070cdf17d1762cab1dd8cd31f59fb306a0cda09c9c514addd6d7d6 pacemaker-remote-2.1.7-5.2.el8_10.x86_64.rpm a3d9fbd17ef30637da79cdf0cbde40d4ef4aedc7bdfda5c572799fd0de5bd6da python3-pacemaker-2.1.7-5.2.el8_10.noarch.rpm d9f606fb57d4af297725b31bd2cd80ae432f3bf419fe8099d3839d2037b99024 RLBA-2024:8872 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * nfsserver fails to stop when `nfsv4_only=true` [rhel-8.10.z] (JIRA:Rocky Linux-61138) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.5.x86_64.rpm f0ffe0bbae48b65f1211ec8cbd290565241a07006f7997a63fc62362004c1cc3 resource-agents-aliyun-4.9.0-54.el8_10.5.x86_64.rpm d4d99113c96365a7721e2d21615316d8e6c33baa385a202d2c0cc91d2205f709 resource-agents-gcp-4.9.0-54.el8_10.5.x86_64.rpm c00e54dc61a62cf613132cdddaca69681972a5ee9c3416427cea138301e1d9a7 resource-agents-paf-4.9.0-54.el8_10.5.x86_64.rpm 311efdb9e49db4cd006086436a9b18abf793294ac53bad79be4e308b7fbda79c RLSA-2024:10987 Moderate: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * sinatra: Open Redirect Vulnerability in Sinatra via X-Forwarded-Host Header (CVE-2024-21510) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.3.x86_64.rpm bf4480f078d0322077e5633ffa5cdb8f22e067c109c176c127efcc1fbceac33d pcs-snmp-0.10.18-2.el8_10.3.x86_64.rpm d6322bccb0afeccbd8b23bdcab1a19049efd155821cb1f469ea278183d3b5927 RLBA-2024:11204 resource-agents bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es) and Enhancement(s): * Filesystem: fix to avoid killing unrelated processes [rhel-8.10.z] (JIRA:Rocky Linux-69297) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.6.x86_64.rpm 8d21b4cc53232a6cf6b3fbb339cb05348a1ec97159fb9ac4589d401ee634b3ee resource-agents-aliyun-4.9.0-54.el8_10.6.x86_64.rpm b05ea221d78d14747cbbe9520abb7a65a149414d1067d363a78351f396df806c resource-agents-gcp-4.9.0-54.el8_10.6.x86_64.rpm c567d052f6d825bd3ba18375de0d470098a3d42e7a9efe2f34d7b350733afd62 resource-agents-paf-4.9.0-54.el8_10.6.x86_64.rpm 2151a552a0ca44e189e96c63131543fbc7e8288250d0212ac49da9bb7eee8741 RLBA-2025:0779 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * The "openstack-cinder-volume" resource agent's start operation can report "started" before it's actually ready to provide storage [rhel-8.10.z] (JIRA:Rocky Linux-72956) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.8.x86_64.rpm c945597497c5ed20fdcac9e6da72937c95719844cd1f9c347dc00e56368004a2 resource-agents-aliyun-4.9.0-54.el8_10.8.x86_64.rpm 376b85249349d8ba08fc5b73483d0aee484d070906a62a5f84e7acdd5d92c6c7 resource-agents-gcp-4.9.0-54.el8_10.8.x86_64.rpm f15462134eb74bad51e577a19581f0b81ace203b1fecb87fc469a33a2310eedf resource-agents-paf-4.9.0-54.el8_10.8.x86_64.rpm cfc55e1765e4973d001a3808bc4844946db1286dd6eee39e6bc9b79e6a077dec RLBA-2024:3014 corosync bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms corosync-3.1.8-1.el8.x86_64.rpm 7a5afdd9e84a46017aee72506048dfdaefc82245b26900417c87775d994384f0 corosynclib-devel-3.1.8-1.el8.x86_64.rpm bbe638479758cc934a158a163f2a5d9ef45d5298db9b2f19a5e40b2ca0fdda46 spausedd-3.1.8-1.el8.x86_64.rpm 43120eb44cb84d983c5d5425d5293618769c12ecbbb53f309b24d9c8bb9802a4 RLBA-2024:4238 fence-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Bug Fix(es): * fence_eps throws python traceback in Rocky Linux 8 (JIRA:Rocky Linux-7734) rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-129.el8_10.2.x86_64.rpm 4bea36b50e6b79c3448e7c436f4ed79ea8a63684292605d82f4bc70394ceb937 fence-agents-aws-4.2.1-129.el8_10.2.noarch.rpm 1b042dbb86ee0e006d12bb6c4248d37d0895d9db0c262137a356310b2f1ef09b fence-agents-azure-arm-4.2.1-129.el8_10.2.noarch.rpm b10ec41454d10b1ee964d4cf91eb0900a8fdaaa970cf2a1dc9fa6cd3eb4adfa7 fence-agents-gce-4.2.1-129.el8_10.2.noarch.rpm 2293fd7a0004516446bfc27afc2ed7dfe7ebe8cbe8d83c820482cb9022e3e6ad fence-agents-openstack-4.2.1-129.el8_10.2.x86_64.rpm 91677516559d238953599af7f2d9cb072a0d4927dac4ba7dd3885a9c01628462 RLSA-2024:6309 Moderate: fence-agents security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fix(es): * urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891) * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-129.el8_10.4.x86_64.rpm d5e90595316835dc680da145a42a0349f2f26c954fac5d46ff44bda63b1eb8ee fence-agents-aws-4.2.1-129.el8_10.4.noarch.rpm 8fa52285a55f85edb7cf3352fca64131922bd05f37ebbb3a943f2f2e65812340 fence-agents-azure-arm-4.2.1-129.el8_10.4.noarch.rpm 69e8ecd9069d5ad8e7dd5d58b482020d008a4142ef7aceb9f849c78c67412c23 fence-agents-gce-4.2.1-129.el8_10.4.noarch.rpm f270cd2c254edc8a00e1e74885bcb8cd9ce9f46e3ae04e7824ebd49baf4c378b fence-agents-openstack-4.2.1-129.el8_10.4.x86_64.rpm 618a57674a7ae7068ab519a810f70d2b9d3a642f228034f38079db647ef817d2 RLBA-2024:8837 fence-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Bug Fix(es): * fence_scsi agents results in failures with less number of registration keys over multipath devices (JIRA:Rocky Linux-56840) rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-129.el8_10.5.x86_64.rpm f30e2fd0437fd9f8690e3415345ea49e86f2820298f971d35c4f2e942d1af1af fence-agents-aws-4.2.1-129.el8_10.5.noarch.rpm 7f666a7449793c4af509b5353bce35c8b466ace1f38e946967b9120f6c839601 fence-agents-azure-arm-4.2.1-129.el8_10.5.noarch.rpm 03ec83795ec1b88b18e316d9ed9f0c5ae909cc6f43299639d933b25b1884ca92 fence-agents-gce-4.2.1-129.el8_10.5.noarch.rpm 9ed5dee5b0f9715b7e201339063e78457ca768b82c83f0e245bd4294aef28ff0 fence-agents-openstack-4.2.1-129.el8_10.5.x86_64.rpm 855bad30ab4898d3f84d3044dc9896b8ec8216fab9ef4b6e384db312dca696f2 RLBA-2025:2603 fence-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Bug Fix(es): * fence_azure_arm: use azure-identity instead of msrestazure, which has been deprecated (JIRA:Rocky Linux-76492) rocky-linux-8-x86-64-highavailability-rpms fence-agents-aliyun-4.2.1-129.el8_10.7.x86_64.rpm 1931f4d765d1edea32fe005e3c39a288d28b8e3fb0b77664ba2878edee8d50a7 fence-agents-aws-4.2.1-129.el8_10.7.noarch.rpm add51be35ca2e2f11ac4349136bab3f60411990ad8cb774298a0e99354d809c8 fence-agents-azure-arm-4.2.1-129.el8_10.7.x86_64.rpm 6437408a067a8847a5d3b448dda605d4f2adcbad5db3e3814fa80a362cac5fb4 fence-agents-gce-4.2.1-129.el8_10.7.noarch.rpm e28a048559f8ecf57653320441caca0623b9c6c0f872807b7ffeefdcd308f4a2 fence-agents-openstack-4.2.1-129.el8_10.7.x86_64.rpm 7c1ab44e405a1e68ab13828ecb40cef4806e413a41a6dd8b71a22202dfde5d12 RLSA-2024:2952 Moderate: resource-agents security and bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * urllib3: Request body not stripped after redirect from 303 status changes request method to GET (CVE-2023-45803) * pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8.x86_64.rpm 54dcb86fc246cfe125865fe371141d60e9387240eb98121db5e0925b2ce1e352 resource-agents-aliyun-4.9.0-54.el8.x86_64.rpm 648fcf052073ecced3c44e6aba9eb5ac3f68ce692aaed2cf991b3e80307240be resource-agents-gcp-4.9.0-54.el8.x86_64.rpm fe95fff7a10afa3ee207f0746adec9ad48a70900cf4be9c4ef613ef3173c1f14 resource-agents-paf-4.9.0-54.el8.x86_64.rpm db605e26eb9507c9e06dab5d64616b8e2195d8112be76aa4392844da129d2ba4 RLBA-2024:2954 booth bug fix and enhancement update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section. rocky-linux-8-x86-64-highavailability-rpms booth-1.1-1.el8.x86_64.rpm 90e501cf2791d2b11753e836d4c42757958f0c461a28294ea0ba3e3b811dd176 booth-arbitrator-1.1-1.el8.noarch.rpm 6978db21aa523d8a44123ca5368c629b08e87bdb035a070dab06e7d06d3774c4 booth-core-1.1-1.el8.x86_64.rpm 6d4a08c480c66e5a18cac57b5aba639c5242c5ba933a66a99665e8b11c98cea0 booth-site-1.1-1.el8.noarch.rpm 5982bf4a914d8dfd04323da991ccdbc28cd917548c371e56c658f71854791cc3 booth-test-1.1-1.el8.noarch.rpm 9c387866327e8d7dd6882e961d7970f6399ff3e4f7a13ec82839f902d1a25a67 RLSA-2024:5338 Low: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Low

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * REXML: DoS parsing an XML with many `<`s in an attribute value (CVE-2024-35176) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.1.x86_64.rpm f7e220d5bbf1bcf05fe463c7eaa576bc054ce462754d3f140de2338574a605e1 pcs-snmp-0.10.18-2.el8_10.1.x86_64.rpm cea55b8c2520ba7a106a71fa8394b4e2346ea127c5a059143f0969c06a78d22d RLSA-2024:6311 Moderate: resource-agents security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Moderate

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891) * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.4.x86_64.rpm 8b65fe953bfb08afced622aed7d3c6db6b03886a3252202f3ab31daf6616a1a9 resource-agents-aliyun-4.9.0-54.el8_10.4.x86_64.rpm e66b5c46e20943c35db2334dc3a177c2beeb44eddc728f731d0329cfaa11faf1 resource-agents-gcp-4.9.0-54.el8_10.4.x86_64.rpm ddbec70ab2e1f96b67a1bb689e839a265f6a870b12f12592642d8ec378b3d073 resource-agents-paf-4.9.0-54.el8_10.4.x86_64.rpm 51d5147e8a5bb3498ae03726956a4b0aeabb170ab2c95446e7200d4673989401 RLBA-2025:2613 resource-agents bug fix update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 None

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Bug Fix(es): * portblock: fix iptables version detection [rhel-8.10.z] (JIRA:Rocky Linux-79823) rocky-linux-8-x86-64-highavailability-rpms resource-agents-4.9.0-54.el8_10.10.x86_64.rpm 605cb746a3e9dd7b69ebd42de525c6048b93f22589c5caf5945251218caae70a resource-agents-aliyun-4.9.0-54.el8_10.10.x86_64.rpm a3ab81c652adef4a0c7ffe69dd5d41f1e54679c20d00e12d759efa97d5460493 resource-agents-gcp-4.9.0-54.el8_10.10.x86_64.rpm 150eb4db67fb5ca72d6e60d2e05c848eabe66350ef9f05fefb7af39c1a24829d resource-agents-paf-4.9.0-54.el8_10.10.x86_64.rpm 12a1896cb64894f2132b4023900b5583053f5c86d4f25a89ac83fb4465ffbb9e RLSA-2025:2872 Important: pcs security update Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 8 1 Important

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fix(es): * python-tornado: Tornado has HTTP cookie parsing DoS vulnerability (CVE-2024-52804) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-8-x86-64-highavailability-rpms pcs-0.10.18-2.el8_10.4.x86_64.rpm b1674e67d9001e7bdc7bf4c09b284ca9a51b060df17c8613e1d960683aa68f97 pcs-snmp-0.10.18-2.el8_10.4.x86_64.rpm c06a4f6b276f3682533e74a8dd5057d73b70c90ea4ee9b4627a79c598e7d4ede