20 matches found
MiracleLinux 8 : pcs-0.10.14-5.el8.ML.1 (AXSA:2022-4465:08)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4465:08 advisory. pcs: improper authentication via PAM CVE-2022-1049 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. No...
Rocky Linux 9 : pcs (RLSA-2022:7935)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7935 advisory. - A flaw was found in the Pacemaker configuration tool pcs. The pcs daemon was allowing expired accounts, and accounts with expired passwords to login when using...
Oracle Linux 8 : pcs (ELSA-2022-10031)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-10031 advisory. 0.10.14-5.0.1 - Replace HAM-logo.png with a generic one 0.10.14-5 - Fixed ruby socket permissions - Resolves: rhbz2116838 0.10.14-4 - Fixed enable sbd from web...
Oracle Linux 9 : pcs (ELSA-2022-10007)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-10007 advisory. 0.11.3-4 - Fixed ruby socket permissions - Resolves: rhbz2116841 0.11.3-3 - Fixed booth ticket mode value case insensitive - Fixed booth sync check whether...
Rocky Linux 8 : pcs (RLSA-2022:7447)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7447 advisory. - A flaw was found in the Pacemaker configuration tool pcs. The pcs daemon was allowing expired accounts, and accounts with expired passwords to login when using...
RHEL 9 : pcs (RHSA-2022:7935)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:7935 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication v...
Moderate: Red Hat Security Advisory: pcs security, bug fix, and enhancement update
An update for pcs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
RLSA-2022:7935 Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
ALSA-2022:7935 Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
AlmaLinux 8 : pcs (ALSA-2022:7447)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:7447 advisory. - A flaw was found in the Pacemaker configuration tool pcs. The pcs daemon was allowing expired accounts, and accounts with expired passwords to login when using P...
Moderate: Red Hat Security Advisory: pcs security, bug fix, and enhancement update
An update for pcs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
RLSA-2022:7447 Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
ALSA-2022:7447 Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
Moderate: pcs security, bug fix, and enhancement update
The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: pcs: improper authentication via PAM CVE-2022-1049 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...
Debian dla-3108 : pcs - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3108 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3108-1 [email protected] https://www.debian.org/lts/security/...
[SECURITY] [DLA 3108-1] pcs security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3108-1 [email protected] https://www.debian.org/lts/security/ Valentin Vidic September 14, 2022 https://wiki.debian.org/LTS -...
Debian: Security Advisory (DSA-5226-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5226-1] pcs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5226-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 06, 2022 https://www.debian.org/security/faq -...
CVE-2022-1049
CVE-2022-1049 concerns the Pacemaker configuration tool (pcs) where the daemon allowed expired accounts and accounts with expired passwords to authenticate via PAM, enabling login for unprivileged expired accounts. Connected advisories/plugins reference affected packages across multiple distribut...