SB2025070341 - Ubuntu update for pcs

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Information disclosure (CVE-ID: CVE-2018-1086)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists in the REST interface due to debug parameter removal bypass. A remote attacker can gain access to potentially sensitive information.

2) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2022-2735)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect permissions set on a Unix socket used for internal communication between PCS daemons. A local user can obtain the authentication token for hacluster and gain control over the cluster managed by pcs.

3) Improper Authentication (CVE-ID: CVE-2022-1049)

The vulnerability allows a remote user to bypass authentication process.

The vulnerability exists due to pcs daemon allows expired accounts, and accounts with expired passwords to login when using PAM authentication. A remote user with an expired account can still access to the application.

4) Stored cross-site scripting (CVE-ID: CVE-2017-2661)

The disclosed vulnerability allows a remote user to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data passed via the Node name field when creating new cluster or adding existing cluster. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Remediation

Install update from vendor's website.

References

• https://ubuntu.com/security/notices/USN-7614-1