[ClusterLabs] Corosync 2.4.4 is available at corosync.org!

Jan Friesse jfriesse at redhat.com
Fri Apr 13 06:09:53 UTC 2018


Ferenc Wágner napsal(a):
> Jan Pokorný <jpokorny at redhat.com> writes:
> 
>> On 12/04/18 14:33 +0200, Jan Friesse wrote:
>>
>>> This release contains a lot of fixes, including fix for
>>> CVE-2018-1084.
>>
>> Security related updates would preferably provide more context
> 
> Absolutely, thanks for providing that!  Looking at the git log, I wonder
> if c139255 (totemsrp: Implement sanity checks of received msgs) has
> direct security relevance as well.  Should I include that too in the

Not entirely direct, but quite similar.

> Debian security update?  Debian stable has 2.4.2, so I'm cherry picking

Yes, please include all
fc1d5418533c1faf21616b282c2559bed7d361c4..b25b029fe186bacf089ab8136da58390945eb35c

Regards,
   Honza

> into that version.




More information about the Users mailing list