logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-16877

Description

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.


Affected Package


OS OS Version Package Name Package Version
Debian 12 pacemaker 2.1.4-2
Debian 11 pacemaker 2.0.5-2
Debian 10 pacemaker 2.0.1-5+deb10u2
Debian 999 pacemaker 2.1.4-2

Related