Gang Up on the Problem, Not Each Other

Threatpost Op-Ed is a regular feature where experts contribute essays and commentary on what’s happening in security and privacy. Today’s contributor is Katherine Carpenter. The imaginary world in which an artificial intelligence can kill a person by adjusting the insulin from his pump to a deadl...

Moderate: Red Hat Security Advisory: atomic-openshift-utils security and bug fix update

An update for openshift-ansible and ansible is now available for OpenShift Container Platform 3.2 and 3.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Fedora 25 : pacemaker (2016-c1cbcc4528)

Security fix for CVE-2016-7035 improper IPC guarding Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

CentOS 6 : pacemaker (CESA-2016:2675)

An update for pacemaker is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

CentOS Update for pacemaker CESA-2016:2675 centos6

Check the version of pacemaker SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882590";...

pacemaker security update

CentOS Errata and Security Advisory CESA-2016:2675 An update for pacemaker is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

Pacemaker Local Elevation of Privilege Vulnerability

Pacemaker is a cluster resource manager that provides fault detection, cluster services, etc. via a preferred cluster infrastructure OpenAIS or Heartbeat. A local elevation of privilege vulnerability exists in Pacemaker versions 1.1.10 through 1.1.15, which can be exploited by an attacker to gain...

[SECURITY] Fedora 25 Update: pacemaker-1.1.15-3.fc25

Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...

Fedora 23 : pacemaker (2016-2a159ef513)

Security fix for CVE-2016-7035 improper IPC guarding Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

RHEL 6 : pacemaker (RHSA-2016:2675)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2675 advisory. The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain...

Scientific Linux Security Update : pacemaker on SL6.x i386/x86_64 (20161108)

Security Fixes : - An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gai...

[SECURITY] Fedora 23 Update: pacemaker-1.1.15-2.fc23

Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...

pacemaker: Privilege escalation due to improper guarding of IPC communication

An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on th...

Important: Red Hat Security Advisory: pacemaker security update

An update for pacemaker is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

RHEL 7 : pacemaker (RHSA-2016:2614)

An update for pacemaker is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

[SECURITY] Fedora 24 Update: pacemaker-1.1.15-2.fc24

Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...

RHEL 7 : pacemaker (RHSA-2016:2578)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2578 advisory. The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain...

RHEL 7 : pcs (RHSA-2016:2596)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2016:2596 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. The following packages have been...

Important: Red Hat Security Advisory: pacemaker security and bug fix update

An update for pacemaker is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

pacemaker: Privilege escalation due to improper guarding of IPC communication

An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on th...