Package: pcs / 0.9.155+dfsg-2+deb9u1

Metadata

Package Version Patches format
pcs 0.9.155+dfsg-2+deb9u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 Remove Gemlock.file on Debian.patch | (download)

pcsd/Gemfile.lock | 44 0 + 44 - 0 !
1 file changed, 44 deletions(-)

 remove gemlock.file on debian

 - See
https://wiki.debian.org/Teams/Ruby/Packaging/Tests#Dealing_with_Bundler_usage

Signed-off-by: Richard B Winters <rik@mmogp.com>
0002 Remove require in pcsd ssl.rb.patch | (download)

pcsd/ssl.rb | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 remove require in pcsd ssl.rb

  - Remove the require on rubygems from /usr/share/pcsd/
    ssl.rb as dependencies are handled via debian

0003 Fix spelling.patch | (download)

pcs/pcs.8 | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 fix spelling errors reported by lintian
0004 Remove pcsd test .gitignore file.patch | (download)

pcsd/test/.gitignore | 1 0 + 1 - 0 !
1 file changed, 1 deletion(-)

 remove pcsd/test .gitignore file

 - We don't install vcs ignore files in a Debian package, 
   and do not recommend packing them in release tarballs.

0005 settings.py | (download)

pcs/settings.py.debian | 9 5 + 4 - 0 !
pcsd/settings.rb.debian | 4 2 + 2 - 0 !
2 files changed, 7 insertions(+), 6 deletions(-)

 update locations of binaries for debian
0006 Replace orderedhash.patch | (download)

pcsd/Gemfile | 2 1 + 1 - 0 !
pcsd/config.rb | 12 6 + 6 - 0 !
pcsd/pcsd-cli.rb | 4 2 + 2 - 0 !
pcsd/permissions.rb | 4 2 + 2 - 0 !
4 files changed, 11 insertions(+), 11 deletions(-)

 replace orderedhash gem with active_support
 Gem orderedhash <https://rubygems.org/gems/orderedhash/>
 has several problems:
 * not packaged in Debian (so not used by some other software)
 * does not look maintained (last version 0.0.6 is from 2008)
 * no license file included (just one mention of public domain
   in a source file)
 .
 On the other hand, replacement active_support gem is rather
 popular (albeit somewhat big) and does not experience any of
 these problems.
0007 Fix corosync log.patch | (download)

pcs/cluster.py | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 update corosync log location for debian
0008 Fix cluster destroy cleanup.patch | (download)

pcs/cluster.py | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

  fix: "find" should run only in specific directories
 Some users reported that running find over "/var/lib" for cleanup
 purposes can take too long depending on what you have installed.
 A particular example was having "lxcfs" fuse mounted in /var/lib.
 That can make the search for cluster leftovers to take quite some
 time, making user to believe the process has hang.
0009 Fix testsuite.patch | (download)

pcs/lib/test/test_resource_agent.py | 8 4 + 4 - 0 !
pcs/test/test_cluster.py | 48 24 + 24 - 0 !
pcs/test/test_lib_corosync_config_parser.py | 8 4 + 4 - 0 !
pcs/test/test_resource.py | 2 1 + 1 - 0 !
pcs/test/test_stonith.py | 8 4 + 4 - 0 !
pcsd/test/test_config.rb | 2 1 + 1 - 0 !
6 files changed, 38 insertions(+), 38 deletions(-)

 update testsuite to work with debian
0010 Replace chkconfig.patch | (download)

pcs/lib/external.py | 21 14 + 7 - 0 !
pcs/settings.py.debian | 1 1 + 0 - 0 !
pcs/test/test_lib_external.py | 30 15 + 15 - 0 !
pcsd/pcs.rb | 26 19 + 7 - 0 !
4 files changed, 49 insertions(+), 29 deletions(-)

 replace chkconfig calls
 All chkconfig calls should be replaced with update-rc.d
 and insserv calls to work on Debian.
0011 Fix python lxml.patch | (download)

pcs/lib/commands/test/test_resource_agent.py | 2 1 + 1 - 0 !
pcs/lib/commands/test/test_stonith_agent.py | 2 1 + 1 - 0 !
pcs/lib/test/test_resource_agent.py | 4 2 + 2 - 0 !
pcs/test/test_lib_cib_tools.py | 2 1 + 1 - 0 !
4 files changed, 5 insertions(+), 5 deletions(-)

 update pcs testsuite for python-lxml 3.7.1-1
 New lxml version has changed the error messages a bit so
 some of the pcs tests started failing because of that.
0012 CVE 2017 2661.patch | (download)

pcsd/public/js/nodes-ember.js | 4 2 + 2 - 0 !
pcsd/public/js/pcsd.js | 2 1 + 1 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 [patch] web ui: fixed xss vulnerability


0013 CVE 2018 1086.patch | (download)

pcsd/pcsd.rb | 15 10 + 5 - 0 !
1 file changed, 10 insertions(+), 5 deletions(-)

 cve-2018-1086 debug parameter removal bypass, allowing information disclosure
 To prevent some information disclosure, pcsd actively removes '--debug'
 from command requested over the REST interface, but this can be bypassed.
 The information gained could then be used to gain higher privileges.