{"affected":[{"ecosystem_specific":{"binaries":[{"crmsh":"4.3.0+20210305.9db5c9a8-5.42.1","crmsh-scripts":"4.3.0+20210305.9db5c9a8-5.42.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Availability Extension 15 SP2","name":"crmsh","purl":"pkg:rpm/suse/crmsh&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.3.0+20210305.9db5c9a8-5.42.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for crmsh fixes the following issues:\n\n- Update to version 4.3.0+20210305.9db5c9a8:\n  * Fix: bootstrap: Adjust qdevice configure/remove process to avoid race condition due to quorum lost(bsc#1181415)\n  * Dev: cibconfig: remove related code about detecting crm_diff support --no-verion\n  * Fix: ui_configure: raise error when params not exist(bsc#1180126)\n  * Dev: doc: remove doc for crm node status\n  * Dev: ui_node: remove status subcommand\n\n- Update to version 4.3.0+20210219.5d1bf034:\n  * Fix: hb_report: walk through hb_report process under hacluster(CVE-2020-35459, bsc#1179999; CVE-2021-3020, bsc#1180571)\n  * Fix: bootstrap: setup authorized ssh access for hacluster(CVE-2020-35459, bsc#1179999; CVE-2021-3020, bsc#1180571)\n  * Dev: analyze: Add analyze sublevel and put preflight_check in it(jsc#ECO-1658)\n  * Dev: utils: change default file mod as 644 for str2file function\n  * Dev: hb_report: Detect if any ocfs2 partitions exist\n  * Dev: lock: give more specific error message when raise ClaimLockError\n  * Fix: Replace mktemp() to mkstemp() for security\n  * Fix: Remove the duplicate --cov-report html in tox.\n  * Fix: fix some lint issues.\n  * Fix: Replace utils.msg_info to task.info\n  * Fix: Solve a circular import error of utils.py\n  * Fix: hb_report: run lsof with specific ocfs2 device(bsc#1180688)\n  * Dev: corosync: change the permission of corosync.conf to 644\n  * Fix: preflight_check: task: raise error when report_path isn't a directory\n  * Fix: bootstrap: Use class Watchdog to simplify watchdog config(bsc#1154927, bsc#1178869)\n  * Dev: Polish the sbd feature.\n  * Dev: Replace -f with -c and run check when no parameter provide.\n  * Fix: Fix the yes option not working\n  * Fix: Remove useless import and show help when no input.\n  * Dev: Correct SBD device id inconsistenc during ASR\n  * Fix: completers: return complete start/stop resource id list correctly(bsc#1180137)\n  * Dev: Makefile.am: change makefile to integrate preflight_check\n  * Medium: integrate preflight_check into crmsh(jsc#ECO-1658)\n  * Fix: bootstrap: make sure sbd device UUID was the same between nodes(bsc#1178454)\n","id":"SUSE-SU-2021:0781-1","modified":"2021-03-12T16:43:36Z","published":"2021-03-12T16:43:36Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20210781-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1154927"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178454"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178869"},{"type":"REPORT","url":"https://bugzilla.suse.com/1179999"},{"type":"REPORT","url":"https://bugzilla.suse.com/1180126"},{"type":"REPORT","url":"https://bugzilla.suse.com/1180137"},{"type":"REPORT","url":"https://bugzilla.suse.com/1180571"},{"type":"REPORT","url":"https://bugzilla.suse.com/1180688"},{"type":"REPORT","url":"https://bugzilla.suse.com/1181415"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-35459"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3020"}],"related":["CVE-2020-35459","CVE-2021-3020"],"summary":"Security update for crmsh","upstream":["CVE-2020-35459","CVE-2021-3020"]}