概述
Important: pcs security update
类型/严重性
Security Advisory: Important
Red Hat Lightspeed patch analysis
标题
An update for pcs is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
描述
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities.
Security Fix(es):
- rubygem-rack: Rack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters (CVE-2025-59830)
- rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion) (CVE-2025-61770)
- rack: Rack's multipart parser buffers large non?file fields entirely in memory, enabling DoS (memory exhaustion) (CVE-2025-61771)
- rack: Rack memory exhaustion denial of service (CVE-2025-61772)
- rubygem-rack: Unbounded read in `Rack::Request` form parsing can lead to memory exhaustion (CVE-2025-61919)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
受影响的产品
-
Red Hat Enterprise Linux High Availability for x86_64 9 x86_64
-
Red Hat Enterprise Linux High Availability for ARM 64 9 aarch64
-
Red Hat Enterprise Linux High Availability for x86_64 - Extended Update Support 9.6 x86_64
-
Red Hat Enterprise Linux Resilient Storage for x86_64 9 x86_64
-
Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Update Support 9.6 x86_64
-
Red Hat Enterprise Linux Resilient Storage for IBM z Systems 9 s390x
-
Red Hat Enterprise Linux High Availability for IBM z Systems 9 s390x
-
Red Hat Enterprise Linux Resilient Storage for Power, little endian 9 ppc64le
-
Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Update Support 9.6 ppc64le
-
Red Hat Enterprise Linux High Availability for Power, little endian 9 ppc64le
-
Red Hat Enterprise Linux High Availability for Power, little endian - Extended Update Support 9.6 ppc64le
-
Red Hat Enterprise Linux High Availability for Power LE - Update Services for SAP Solutions 9.6 ppc64le
-
Red Hat Enterprise Linux High Availability for x86_64 - Update Services for SAP Solutions 9.6 x86_64
-
Red Hat Enterprise Linux High Availability (for IBM z Systems) - Extended Update Support 9.6 s390x
-
Red Hat Enterprise Linux High Availability (for ARM 64) - Extended Update Support 9.6 aarch64
-
Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Update Support 9.6 s390x
-
Red Hat Enterprise Linux High Availability for ARM 64 - 4 years of updates 9.6 aarch64
-
Red Hat Enterprise Linux High Availability for IBM z Systems - 4 years of updates 9.6 s390x
-
Red Hat Enterprise Linux Resilient Storage for x86_64 - 4 years of updates 9.6 x86_64
-
Red Hat Enterprise Linux Resilient Storage for Power, little endian - 4 years of updates 9.6 ppc64le
-
Red Hat Enterprise Linux Resilient Storage for IBM z Systems - 4 years of updates 9.6 s390x
修复
-
BZ - 2398167
- CVE-2025-59830 rubygem-rack: Rack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters
-
BZ - 2402174
- CVE-2025-61770 rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
-
BZ - 2402175
- CVE-2025-61771 rack: Rack's multipart parser buffers large non?file fields entirely in memory, enabling DoS (memory exhaustion)
-
BZ - 2402200
- CVE-2025-61772 rack: Rack memory exhaustion denial of service
-
BZ - 2403180
- CVE-2025-61919 rubygem-rack: Unbounded read in `Rack::Request` form parsing can lead to memory exhaustion
注::
可能有这些软件包的更新版本。
点击软件包名称查看详情。
Red Hat Enterprise Linux High Availability for x86_64 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux High Availability for ARM 64 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| aarch64 |
|
pcs-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: 2de118d9d577a396c3b306d1ce075f7647edd8590984b51dcbc2c67786ff1700 |
|
pcs-snmp-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: e52235222a256de255ad66aec3a71b1121646a40805631c220be6e25e92942fd |
Red Hat Enterprise Linux High Availability for x86_64 - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux Resilient Storage for x86_64 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux Resilient Storage for IBM z Systems 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
Red Hat Enterprise Linux High Availability for IBM z Systems 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
Red Hat Enterprise Linux Resilient Storage for Power, little endian 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux High Availability for Power, little endian 9
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux High Availability for Power, little endian - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux High Availability for Power LE - Update Services for SAP Solutions 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux High Availability for x86_64 - Update Services for SAP Solutions 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux High Availability (for IBM z Systems) - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
Red Hat Enterprise Linux High Availability (for ARM 64) - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| aarch64 |
|
pcs-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: 2de118d9d577a396c3b306d1ce075f7647edd8590984b51dcbc2c67786ff1700 |
|
pcs-snmp-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: e52235222a256de255ad66aec3a71b1121646a40805631c220be6e25e92942fd |
Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Update Support 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
Red Hat Enterprise Linux High Availability for ARM 64 - 4 years of updates 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| aarch64 |
|
pcs-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: 2de118d9d577a396c3b306d1ce075f7647edd8590984b51dcbc2c67786ff1700 |
|
pcs-snmp-0.11.9-2.el9_6.2.aarch64.rpm
|
SHA-256: e52235222a256de255ad66aec3a71b1121646a40805631c220be6e25e92942fd |
Red Hat Enterprise Linux High Availability for IBM z Systems - 4 years of updates 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
Red Hat Enterprise Linux Resilient Storage for x86_64 - 4 years of updates 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| x86_64 |
|
pcs-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: 45f8773f1f4ce6141bd42dabc0243bfb157643cdfc38ffd193889c631574f91b |
|
pcs-snmp-0.11.9-2.el9_6.2.x86_64.rpm
|
SHA-256: d9679ed2559ad32cdde49cca248fb8fce08600aa797dde71f2f16b9d39fa1aa5 |
Red Hat Enterprise Linux Resilient Storage for Power, little endian - 4 years of updates 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| ppc64le |
|
pcs-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 369ef051d3a23e6214606450985ba06b2685ef95f08fae67aa422a74dd4760e3 |
|
pcs-snmp-0.11.9-2.el9_6.2.ppc64le.rpm
|
SHA-256: 8ef17019715032b54072eb103e6ce184220d09e4c842614d437f3a70aa552ceb |
Red Hat Enterprise Linux Resilient Storage for IBM z Systems - 4 years of updates 9.6
| SRPM |
|
pcs-0.11.9-2.el9_6.2.src.rpm
|
SHA-256: 3e193cdc28ec79dc85540052baf53877b2b638e4e78d8216fabec64665902036 |
| s390x |
|
pcs-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 0d437b3c8146a1ea25a934fa3e183314b98d453c926334a5be54f696bc535274 |
|
pcs-snmp-0.11.9-2.el9_6.2.s390x.rpm
|
SHA-256: 4e4771b3d6eae3275c15956f9319a70f4d3363870f4d7da16db9ddd69b609919 |
