DSA-4791-1 pacemaker - security update

Bulletin has no description...

[SECURITY] [DLA 2447-1] pacemaker security update

Debian LTS Advisory DLA-2447-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 11, 2020 https://wiki.debian.org/LTS Package : pacemaker Version : 1.1.16-1+deb9u1 CVE ID : CVE-2020-25654 Debian Bug : 973254 An ACL bypass flaw was found in pacemaker, a...

Debian DLA-2447-2 : pacemaker regression update

The update of pacemaker released as DLA-2447-1 caused a regression when the communication between the Corosync cluster engine and pacemaker takes place. A permission problem prevents IPC requests between cluster nodes. The patch for CVE-2020-25654 has been reverted until a better solution can be...

Debian: Security Advisory (DLA-2447-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-2447-1 pacemaker - security update

Bulletin has no description...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Pacemaker vulnerability (USN-4623-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4623-1 advisory. Ken Gaillot discovered that Pacemaker incorrectly handled IPC communications permissions. A local attacker could possibly use this issue t...

Updated pacemaker packages fix a security vulnerability

ACL restrictions bypass. CVE-2020-25654...

MGASA-2020-0409 Updated pacemaker packages fix a security vulnerability

ACL restrictions bypass. CVE-2020-25654...

Low: Red Hat Security Advisory: resource-agents security and bug fix update

An update for resource-agents is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

Ubuntu: Security Advisory (USN-4623-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4623-1: Pacemaker vulnerability

Ken Gaillot discovered that Pacemaker incorrectly handled IPC communications permissions. A local attacker could possibly use this issue to bypass ACL restrictions and execute arbitrary code as root...

USN-4623-1 pacemaker vulnerability

Ken Gaillot discovered that Pacemaker incorrectly handled IPC communications permissions. A local attacker could possibly use this issue to bypass ACL restrictions and execute arbitrary code as root...

openSUSE Security Update : pacemaker (openSUSE-2020-1825)

This update for pacemaker fixes the following issues : - executor: restrict certain IPC requests to Pacemaker daemons CVE-2020-25654, bsc1177916 - extra: add vim modelines to agents - extra: quote shell variables in agent code where appropriate bsc1175557 - extra: remove trailing whitespace from...

openSUSE: Security Advisory for pacemaker (openSUSE-SU-2020:1825-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Low: Red Hat Security Advisory: resource-agents security and bug fix update

An update for resource-agents is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

RHEL 8 : resource-agents (RHSA-2020:4605)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4605 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several service...

Security update for pacemaker (important)

openSUSE Security Update: Security update for pacemaker Announcement ID: openSUSE-SU-2020:1825-1 Rating: important References: 1167171 1173668 1175557 1177916 Cross-References: CVE-2020-25654 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has three fixes is now...

OPENSUSE-SU-2020:1825-1 Security update for pacemaker

This update for pacemaker fixes the following issues: - executor: restrict certain IPC requests to Pacemaker daemons CVE-2020-25654, bsc1177916 - extra: add vim modelines to agents - extra: quote shell variables in agent code where appropriate bsc1175557 - extra: remove trailing whitespace from...

openSUSE: Security Advisory for pacemaker (openSUSE-SU-2020:1782-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : pacemaker (openSUSE-2020-1782)

This update for pacemaker fixes the following issues : Update to 2.0.4 : - based: use crmexit to free qb-logging - cibsecret: don't use pssh -q option unless supported - crmerror: use gfree for a proper match - crmmon: NULL output-pointer when buffer is freed - crmresource: avoid unnecessary issu...