Improved security section (#3173)

docs/release-notes/2.43.0.md

@@ -86,6 +86,12 @@ New PMM client docker images now include essential troubleshooting tools:
 - `tar` enables easier file transfer in and out of containers using the `kubectl cp` command.
 - `curl` allows direct checking of exporters to verify their proper functioning.
 
+### Improved security
+
+This update addresses several security issues related to the GNU C Library (Glibc), specifically affecting the Name Service Cache Daemon (nscd). Additionally, it resolves multiple security vulnerabilities by upgrading various third-party packages.
+
+These enhancements strengthen the overall security of the PMM Server environment, although they do not directly impact PMM's core functionality.
+
 ### Official ARM support for PMM Client
 With the growing adoption of ARM in data centers and cloud environments, we are excited to announce official support for ARM architecture in PMM Clients. This enables you to seamlessly monitor ARM-based infrastructure, including popular cloud instances and emerging ARM-powered servers.
 
@@ -122,6 +128,7 @@ However, with this change, QAN will no longer be able to list PostgreSQL databas
 
 If you're looking to upgrade, you can easily [install the latest version of Percona Distribution for PostgreSQL](https://docs.percona.com/postgresql/16/installing.html).
 
+
 ## Improvements
 
 - [PMM-13257](https://perconadev.atlassian.net/browse/PMM-13257): [Dashboards] - PMM 2.43 delivers refined MongoDB dashboards with standardized layouts, improved visual consistency, and enhanced usability across Replica Set, Cluster, Collections, and Oplog views, ensuring a more intuitive and efficient monitoring experience.
@@ -157,6 +164,9 @@ If you're looking to upgrade, you can easily [install the latest version of Perc
 
 ### Fixed issues
 
+
+- [PMM-13246](https://perconadev.atlassian.net/browse/PMM-13246) - Addressed four security vulnerabilities (CVEs) related to the GNU C Library (Glibc), specifically affecting the Name Service Cache Daemon (nscd):[CVE-2024-33599](https://nvd.nist.gov/vuln/detail/CVE-2024-33599), [CVE-2024-33600](https://nvd.nist.gov/vuln/detail/CVE-2024-33600), [CVE-2024-33601](https://nvd.nist.gov/vuln/detail/CVE-2024-33601), [CVE-2024-33602](https://nvd.nist.gov/vuln/detail/CVE-2024-33602).
+
 - [PMM-13277](https://perconadev.atlassian.net/browse/PMM-13277) - PMM 2.43 is now available on the AWS Marketplace, resolving the previous temporary unavailability issue of PMM 2.42.0. Users can directly install or upgrade to PMM 2.43.0 through AWS Marketplace or the PMM UI for access to the latest features and improvements.
 
 - [PMM-13246](https://perconadev.atlassian.net/browse/PMM-13246) - Addressed four security vulnerabilities (CVEs) related to the GNU C Library (Glibc), specifically affecting the Name Service Cache Daemon (nscd):
@@ -167,7 +177,7 @@ If you're looking to upgrade, you can easily [install the latest version of Perc
    - [CVE-2024-33602](https://nvd.nist.gov/vuln/detail/CVE-2024-33602)
 
 
- While these vulnerabilities did not directly impact PMM's core functionality, fixing them enhanced the overall security of the PMM Server environment.
+
 
 - [PMM-13002](https://perconadev.atlassian.net/browse/PMM-13246): [Dashboards] - Fixed a bug in the **MongoDB ReplSet Summary** dashboard where the **Node Summary** section only displayed information for one node. It now correctly shows data for all nodes in a replica set when **All** is selected, providing a comprehensive view of multi-node deployments.