745 matches found
Medium: pacemaker
Issue Overview: An ACL bypass flaw was found in pacemaker. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tasks that they would be prevented by ACLs from doing if they went through the...
Amazon Linux 2 : pacemaker (ALAS-2021-1583)
The version of pacemaker installed on the remote host is prior to 1.1.23-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1583 advisory. An ACL bypass flaw was found in pacemaker. An attacker having a local account on the cluster and in the haclient group could use...
[SECURITY] [DLA 2519-1] pacemaker security update
Debian LTS Advisory DLA-2519-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany January 06, 2021 https://wiki.debian.org/LTS Package : pacemaker Version : 1.1.24-0+deb9u1 CVE ID : CVE-2018-16877 CVE-2018-16878 CVE-2020-25654 Several security vulnerabilities were...
DLA-2519-1 pacemaker - security update
Bulletin has no description...
Oracle Linux 8 : pacemaker (ELSA-2020-5487)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5487 advisory. - Prevent users from bypassing ACLs by using IPC directly CVE-2020-25654 Tenable has extracted the preceding description block directly from the Oracle Linux...
pacemaker security update
2.0.4-6.1 - Prevent users from bypassing ACLs by using IPC directly CVE-2020-25654 - Resolves: rhbz1891528...
Security Bulletin: IBM MQ Appliance is affected by Pacemaker vulnerabilities (CVE-2018-16878, CVE-2018-16877, CVE-2019-3885)
Summary IBM MQ Appliance has resolved Pacemaker vulnerabilities. Vulnerability Details CVEID: CVE-2018-16878 DESCRIPTION: Pacemaker is vulnerable to a denial of service, caused by an insufficient verification inflicted preference of uncontrolled processes. A remote attacker could exploit this...
Security Bulletin: IBM MQ is affected by multiple vulnerabilities in Pacemaker
Summary Multiple vulnerabilities were identified in the Pacemaker component that is bundled with IBM MQ Advanced for use by replicated data queue managers RDQM. Vulnerability Details CVEID: CVE-2018-16878 DESCRIPTION: Pacemaker is vulnerable to a denial of service, caused by an insufficient...
pacemaker security update
CentOS Errata and Security Advisory CESA-2020:5453 An update for pacemaker is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...
RHEL 8 : pacemaker (RHSA-2020:5487)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5487 advisory. The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in th...
CentOS: Security Advisory for pacemaker (CESA-2020:5453)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
RHEL 7 : pacemaker (RHSA-2020:5453)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5453 advisory. The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in th...
Moderate: Red Hat Security Advisory: pacemaker security update
An update for pacemaker is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
pacemaker: ACL restrictions bypass
An ACL bypass flaw was found in Pacemaker. This flaw allows an attacker with a local account on the cluster and in the haclient group to use IPC communication with various daemons to directly perform certain tasks that would be prevented if they had gone through configured ACLs. The highest threa...
ALSA-2020:5487 Moderate: pacemaker security update
The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Security Fixes: pacemaker: ACL restrictions bypass CVE-2020-25654 For more details about the security issues, including the...
Moderate: pacemaker security update
The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Security Fixes: pacemaker: ACL restrictions bypass CVE-2020-25654 For more details about the security issues, including the...
pacemaker: ACL restrictions bypass
An ACL bypass flaw was found in Pacemaker. This flaw allows an attacker with a local account on the cluster and in the haclient group to use IPC communication with various daemons to directly perform certain tasks that would be prevented if they had gone through configured ACLs. The highest threa...
Moderate: Red Hat Security Advisory: pacemaker security update
An update for pacemaker is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
pacemaker: ACL restrictions bypass
An ACL bypass flaw was found in Pacemaker. This flaw allows an attacker with a local account on the cluster and in the haclient group to use IPC communication with various daemons to directly perform certain tasks that would be prevented if they had gone through configured ACLs. The highest threa...
Moderate: Red Hat Security Advisory: pacemaker security update
An update for pacemaker is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...