What is CVE-2023-2319?

CVE-2023-2319 is a vulnerability in the PCS package in Red Hat Enterprise Linux 9.2 that does not include the fix for the Webpack issue CVE-2023-28154.

How severe is CVE-2023-2319?

CVE-2023-2319 has a severity rating of critical.

Which software is affected by CVE-2023-2319?

The PCS package version 0.11.4-6.el9 in Red Hat Enterprise Linux 9.2 is affected by CVE-2023-2319.

Is there a fix available for CVE-2023-2319?

Yes, a fix for CVE-2023-2319 is available in the Red Hat Enterprise Linux 9.1 erratum RHSA-2023:1591.

Where can I find more information about CVE-2023-2319?

You can find more information about CVE-2023-2319 on the Red Hat Security Advisory at https://access.redhat.com/security/cve/CVE-2023-28154.

Vulnerability/
CVE-2023-2319

critical

9.8

27/4/2023

17/5/2023

2/8/2024

CVE-2023-2319

First published: Thu Apr 27 2023(Updated: )

It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 (for PCS package), which was previously addressed in Red Hat Enterprise Linux 9.1 via erratum RHSA-2023:1591. The CVE-2023-2319 was assigned to that Red Hat specific security regression in Red Hat Enterprise Linux 9.2.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
ClusterLabs pcs	=0.11.4-6.el9
Redhat Enterprise Linux High Availability	=9.0
Redhat Enterprise Linux High Availability Eus	=9.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-2319?
CVE-2023-2319 is a vulnerability in the PCS package in Red Hat Enterprise Linux 9.2 that does not include the fix for the Webpack issue CVE-2023-28154.
How severe is CVE-2023-2319?
CVE-2023-2319 has a severity rating of critical.
Which software is affected by CVE-2023-2319?
The PCS package version 0.11.4-6.el9 in Red Hat Enterprise Linux 9.2 is affected by CVE-2023-2319.
Is there a fix available for CVE-2023-2319?
Yes, a fix for CVE-2023-2319 is available in the Red Hat Enterprise Linux 9.1 erratum RHSA-2023:1591.
Where can I find more information about CVE-2023-2319?
You can find more information about CVE-2023-2319 on the Red Hat Security Advisory at https://access.redhat.com/security/cve/CVE-2023-28154.

collector/nvd-index
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/author
agent/last-modified-date
agent/description
agent/tags
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-2319
vendor/clusterlabs
canonical/clusterlabs pcs
version/clusterlabs pcs/0.11.4-6.el9
vendor/redhat
canonical/redhat enterprise linux high availability
version/redhat enterprise linux high availability/9.0
canonical/redhat enterprise linux high availability eus
version/redhat enterprise linux high availability eus/9.2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.