CLSA-2026-1778127227

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778127227.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1778127227

Upstream

CVE-2024-45769

CVE-2024-45770

Published

2026-05-07T04:13:52Z

Modified

2026-05-29T01:34:08.527079416Z

Summary

pcp: Fix of 2 CVEs

Details

CVE-2024-45770: guard pmpost against symlink attacks on $PCPLOGDIR/NOTICES
CVE-2024-45769: harden libpcp __pmDecodeValueSet to prevent heap corruption from crafted PDUs

References

https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2026-1778127227.html

Affected packages