<div class="container">
<h1>Security update for pcp</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2025:0011-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2025-01-03T16:49:10Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1217826">bsc#1217826</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1222815">bsc#1222815</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230551">bsc#1230551</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230552">bsc#1230552</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231345">bsc#1231345</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-6917.html">CVE-2023-6917</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45769.html">CVE-2024-45769</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-45770.html">CVE-2024-45770</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-6917</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45769</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.7</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45769</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45769</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45770</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.6</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45770</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-45770</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.4</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">openSUSE Leap 15.4</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves three vulnerabilities and has two security fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for pcp fixes the following issues:</p>
<p>Upgrade to 6.2.0 (bsc#1217826 / PED#8192):</p>
<ul>
<li>CVE-2024-45770: Fixed symlink race (bsc#1230552).</li>
<li>CVE-2024-45769: Fixed pmstore corruption (bsc#1230551)</li>
<li>CVE-2023-6917: Fixed local privilege escalation from pcp user to root (bsc#1217826).</li>
</ul>
<p>Bug fixes:</p>
<ul>
<li>Reintroduce libuv support for SLE >= 15 (bsc#1231345). </li>
<li>move pmlogger_daily into main package (bsc#1222815)</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
openSUSE Leap 15.4
<br/>
<code>zypper in -t patch SUSE-2025-11=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
<ul>
<li>pcp-pmda-summary-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-summary-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_mmv1-6.2.0-150400.5.9.1</li>
<li>libpcp3-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_web1-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-devel-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-cifs-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-sockets-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_trace2-6.2.0-150400.5.9.1</li>
<li>pcp-devel-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-import-collectl2pcp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-bind2-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-smart-6.2.0-150400.5.9.1</li>
<li>pcp-testsuite-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_web1-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-docker-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-cifs-6.2.0-150400.5.9.1</li>
<li>pcp-testsuite-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-nvidia-gpu-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-zimbra-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-system-tools-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-shping-6.2.0-150400.5.9.1</li>
<li>pcp-6.2.0-150400.5.9.1</li>
<li>libpcp-devel-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-hacluster-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-lustrecomm-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-logger-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_gui2-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp_import1-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-zimbra-6.2.0-150400.5.9.1</li>
<li>pcp-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-apache-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-bash-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mailq-6.2.0-150400.5.9.1</li>
<li>libpcp_gui2-6.2.0-150400.5.9.1</li>
<li>pcp-debugsource-6.2.0-150400.5.9.1</li>
<li>perl-PCP-LogImport-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-system-tools-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-trace-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-sendmail-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-apache-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-gfs2-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mounts-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-cisco-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mounts-debuginfo-6.2.0-150400.5.9.1</li>
<li>perl-PCP-MMV-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-weblog-debuginfo-6.2.0-150400.5.9.1</li>
<li>perl-PCP-MMV-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-dm-6.2.0-150400.5.9.1</li>
<li>libpcp_mmv1-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-hacluster-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-roomtemp-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-weblog-6.2.0-150400.5.9.1</li>
<li>libpcp_trace2-debuginfo-6.2.0-150400.5.9.1</li>
<li>libpcp3-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-systemd-6.2.0-150400.5.9.1</li>
<li>perl-PCP-LogImport-6.2.0-150400.5.9.1</li>
<li>python3-pcp-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-sendmail-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-docker-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-dm-debuginfo-6.2.0-150400.5.9.1</li>
<li>perl-PCP-PMDA-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-roomtemp-6.2.0-150400.5.9.1</li>
<li>python3-pcp-6.2.0-150400.5.9.1</li>
<li>pcp-gui-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-import-collectl2pcp-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-lustrecomm-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-gui-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-smart-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-trace-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-shping-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-sockets-6.2.0-150400.5.9.1</li>
<li>perl-PCP-LogSummary-6.2.0-150400.5.9.1</li>
<li>libpcp_import1-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-systemd-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-cisco-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-bash-debuginfo-6.2.0-150400.5.9.1</li>
<li>perl-PCP-PMDA-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mailq-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-nvidia-gpu-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-logger-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-gfs2-debuginfo-6.2.0-150400.5.9.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (noarch)
<ul>
<li>pcp-pmda-gluster-6.2.0-150400.5.9.1</li>
<li>pcp-doc-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-ds389log-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-elasticsearch-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-openvswitch-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-nutcracker-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-ds389-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-unbound-6.2.0-150400.5.9.1</li>
<li>pcp-import-iostat2pcp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-postfix-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-bonding-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-lustre-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-news-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-samba-6.2.0-150400.5.9.1</li>
<li>pcp-import-sar2pcp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-json-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mysql-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-netcheck-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2zabbix-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-memcache-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-zswap-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-oracle-6.2.0-150400.5.9.1</li>
<li>pcp-import-ganglia2pcp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-rsyslog-6.2.0-150400.5.9.1</li>
<li>pcp-zeroconf-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-lmsensors-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-activemq-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-netfilter-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2elasticsearch-6.2.0-150400.5.9.1</li>
<li>pcp-import-mrtg2pcp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-mic-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-slurm-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2json-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2graphite-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-named-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-gpfs-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-haproxy-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2influxdb-6.2.0-150400.5.9.1</li>
<li>pcp-conf-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-nginx-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-openmetrics-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-dbping-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-pdns-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-redis-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-snmp-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-gpsd-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-nfsclient-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2spark-6.2.0-150400.5.9.1</li>
<li>pcp-export-pcp2xml-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-rabbitmq-6.2.0-150400.5.9.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (aarch64 ppc64le x86_64 i586)
<ul>
<li>pcp-pmda-perfevent-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-infiniband-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-infiniband-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-perfevent-6.2.0-150400.5.9.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (x86_64)
<ul>
<li>pcp-pmda-resctrl-debuginfo-6.2.0-150400.5.9.1</li>
<li>pcp-pmda-resctrl-6.2.0-150400.5.9.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-6917.html">https://www.suse.com/security/cve/CVE-2023-6917.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45769.html">https://www.suse.com/security/cve/CVE-2024-45769.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-45770.html">https://www.suse.com/security/cve/CVE-2024-45770.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1217826">https://bugzilla.suse.com/show_bug.cgi?id=1217826</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1222815">https://bugzilla.suse.com/show_bug.cgi?id=1222815</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230551">https://bugzilla.suse.com/show_bug.cgi?id=1230551</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1230552">https://bugzilla.suse.com/show_bug.cgi?id=1230552</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1231345">https://bugzilla.suse.com/show_bug.cgi?id=1231345</a>
</li>
</ul>
</div>