Hi Sathish, You don't need to go through all that trouble. Red Hat backported the fix for that vulnerability to RHEL 7:
https://access.redhat.com/errata/RHSA-2020:5453 The pacemaker-1.1.23-1.el7_9.1 packages available in RHEL 7.9 do not have the vulnerability. On Tue, 2021-03-09 at 05:09 +0000, S Sathish S wrote: > Hi Ken/Team, > > Thanks for the prompt response. > > pacemaker 2.0.2 version from upstream source we build and run on RHEL > 7 with corosync-2.4.4 & pcs-0.9.169 software version. > > Due to CVE-2020-25654 high vulnerability is open on both the > pacemaker 1.x and 2.x stream and fix is available in pacemaker 2.0.5 > version. Then pacemaker 2.0.5 version we have built from upstream > source and run on RHEL 7 with corosync-2.4.4 & pcs-0.9.169 software > version and found "pcs status resources" command not working and > raised support ticket with clusterlab below response for the same. > > Clusterlab response : pcs-0.9 does not support pacemaker => 2.0.0. > You can go with pcs-0.9 + corosync < 3 + pacemaker 1.x OR pcs-0.10 + > corosync 3.x + pacemaker 2.x. Combination of corosync 2 + pacemaker 2 > is not supported in any pcs version, even though it may work to some > degree. > > Ticket reference : > https://www.mail-archive.com/users@clusterlabs.org/msg11091.html > > Now we are trying to build latest pcs-0.10 version from upstream > source has runtime dependencies for ruby 2.2.0+ Which is not > available in RHEL 7.x stream and getting compilation error , Please > check and advise us whether pcs-0.10 is supported on RHEL 7. > > > > Thanks and Regards, > S Sathish S -- Ken Gaillot <kgail...@redhat.com> _______________________________________________ Manage your subscription: https://lists.clusterlabs.org/mailman/listinfo/users ClusterLabs home: https://www.clusterlabs.org/