SUSE-SU-2021:2238-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20212238-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:2238-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:2238-1
Related
Published
2021-07-02T15:25:24Z
Modified
2021-07-02T15:25:24Z
Summary
Security update for crmsh
Details

This update for crmsh fixes the following issues:

Update to version 4.3.1+20210624.67223df2:

  • Fix: ocfs2: Skip verifying UUID for ocfs2 device on top of raid or lvm on the join node (bsc#1187553)
  • Fix: history: use Path.mkdir instead of mkdir command(bsc#1179999, CVE-2020-35459)
  • Dev: crash_test: Add big warnings to have users' attention to potential failover(jsc#SLE-17979)
  • Dev: crashtest: rename preflightcheck as crash_test(jsc#SLE-17979)
  • Fix: bootstrap: update sbd watchdog timeout when using diskless SBD with qdevice(bsc#1184465)
  • Dev: utils: allow configure link-local ipv6 address(bsc#1163460)
  • Fix: parse: shouldn't allow property setting with an empty value(bsc#1185423)
  • Fix: help: show help message from argparse(bsc#1175982)
References

Affected packages

SUSE:Linux Enterprise High Availability Extension 15 SP1 / crmsh

Package

Name
crmsh
Purl
pkg:rpm/suse/crmsh&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.1+20210624.67223df2-3.69.1

Ecosystem specific

{
    "binaries": [
        {
            "crmsh-scripts": "4.3.1+20210624.67223df2-3.69.1",
            "crmsh": "4.3.1+20210624.67223df2-3.69.1"
        }
    ]
}