logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-16877

Description

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.


Affected Software


CPE Name Name Version
clusterlabs:pacemaker clusterlabs pacemaker 2.0.0
canonical:ubuntu_linux canonical ubuntu linux 18.04
canonical:ubuntu_linux canonical ubuntu linux 18.10
canonical:ubuntu_linux canonical ubuntu linux 19.04
canonical:ubuntu_linux canonical ubuntu linux 16.04
fedoraproject:fedora fedoraproject fedora 30

Related