21 matches found
[SECURITY] Fedora 28 Update: pacemaker-1.1.18-3.fc28
Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...
[SECURITY] Fedora 25 Update: pacemaker-1.1.15-3.fc25
Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...
[SECURITY] Fedora 23 Update: pacemaker-1.1.15-2.fc23
Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...
[SECURITY] Fedora 21 Update: pacemaker-1.1.13-3.fc21
Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...
[SECURITY] Fedora 23 Update: pacemaker-1.1.13-3.fc23
Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with significant capabilities for managing resources and dependencies. It will run scripts at initialization, when machines go up or down, when...
Linux-HA Heartbeat <= 2.0.6 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19516/info Linux-HA Heartbeat is prone to a remote denial-of-service vulnerability. By successfully exploiting this issue, attackers can crash the master control process. This may result in the failure of services that...
Linux-HA Heartbeat 1.2.3/2.0.x Insecure Default Permissions on Shared Memory Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19186/info Since Linux-HA Heartbeat has insecure default permissions set on shared memory, local attackers may be able to cause a denial of service. Exploitation would most likely result in a system crash, loss of data, a...
CVE-2010-3389
The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
Directory traversal
The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3389
The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3389
The 1 SAPDatabase and 2 SAPInstance scripts in OCF Resource Agents aka resource-agents or cluster-agents 1.0.3 in Linux-HA place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory...
CVE-2010-3389
CVE-2010-3389 affects the SAPDatabase and SAPInstance scripts in OCF Resource Agents (resource-agents) 1.0.3 used by Linux-HA. The vulnerability arises from placing a zero-length directory name in LD_LIBRARY_PATH, enabling a local attacker to load a Trojan horse shared library from the current wo...
Denial of service
XHA Linux-HA on the BlueCat Networks Adonis DNS/DHCP Appliance 5.0.2.8 allows remote attackers to cause a denial of service heartbeat control process crash via a UDP packet to port 694. NOTE: this may be the same as CVE-2006-3121...
CVE-2007-4205
XHA Linux-HA on the BlueCat Networks Adonis DNS/DHCP Appliance 5.0.2.8 allows remote attackers to cause a denial of service heartbeat control process crash via a UDP packet to port 694. NOTE: this may be the same as CVE-2006-3121...
CVE-2007-4205
CVE-2007-4205 affects XHA (Linux-HA) on the BlueCat Networks Adonis DNS/DHCP Appliance 5.0.2.8. The issue allows a remote attacker to trigger a denial-of-service by sending a UDP packet to port 694, crashing the heartbeat control process. The description notes this may be the same vulnerability a...
TS-2007-001-0: BlueCat Networks Adonis Linux-HA heartbeat DoS Vulnerability
Template Security Security Advisory ----------------------------------- BlueCat Networks Adonis Linux-HA heartbeat DoS Vulnerability Date: 2007-07-29 Advisory ID: TS-2007-001-0 Vendor: BlueCat Networks, http://www.bluecatnetworks.com/ Revision: 0 Contents -------- Summary Software Version Details...
Linux-HA Heartbeat 2.0.6 - Remote Denial of Service
Linux-HA Heartbeat 2.0.6 - Remote Denial of Service source: https://www.securityfocus.com/bid/19516/info Linux-HA Heartbeat is prone to a remote denial-of-service vulnerability. By successfully exploiting this issue, attackers can crash the master control process. This may result in the failure o...
Linux-HA Heartbeat 2.0.6 - Remote Denial of Service
source: https://www.securityfocus.com/bid/19516/info Linux-HA Heartbeat is prone to a remote denial-of-service vulnerability. By successfully exploiting this issue, attackers can crash the master control process. This may result in the failure of services that depend on the application's...
Linux-HA Heartbeat 1.2.3/2.0.x - Insecure Default Permissions on Shared Memory
// source: https://www.securityfocus.com/bid/19186/info Since Linux-HA Heartbeat has insecure default permissions set on shared memory, local attackers may be able to cause a denial of service. Exploitation would most likely result in a system crash, loss of data, and resource exhaustion, leading...
Linux-HA Heartbeat 1.2.32.0.x - Insecure Default Permissions on Shared Memory
Linux-HA Heartbeat 1.2.32.0.x - Insecure Default Permissions on Shared Memory // source: https://www.securityfocus.com/bid/19186/info Since Linux-HA Heartbeat has insecure default permissions set on shared memory, local attackers may be able to cause a denial of service. Exploitation would most...