6 matches found
MGASA-2023-0073 Updated crmsh packages fix security vulnerability
Privilege escalation CVE-2021-3020 and other fixes...
CVE-2021-3020
creationtimestamp| type| source ---|---|--- 2022-08-26 07:29:35+00:00| seen| https://t.me/cibsecurity/48835...
CVE-2021-3020
Removed by vendor...
CVE-2021-3020
CVE-2021-3020 (ClusterLabs Hawk / HA Web Konsole) describes a privilege-escalation in Hawk up to version 2.3.0-15 where the setuid binary hawk_invoke can be used by hacluster to run commands as root, potentially spawning an interactive shell outside the allowed set. This leads to root elevation i...
openSUSE: Security Advisory for crmsh (openSUSE-SU-2021:0410-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2021:0782-1 Security update for crmsh
This update for crmsh fixes the following issues: - Update to version 4.3.0+20210219.5d1bf034: Fix: hbreport: walk through hbreport process under haclusterCVE-2020-35459, bsc1179999; CVE-2021-3020, bsc1180571 Fix: bootstrap: setup authorized ssh access for haclusterCVE-2020-35459, bsc1179999;...