3 matches found
[SECURITY] Fedora 22 Update: pcs-0.9.139-7.fc22
pcs is a corosync and pacemaker configuration tool. It permits users to easily view, modify and created pacemaker based clusters...
CVE-2015-5189
The vulnerability CVE-2015-5189 affects the pcsd component of PCS (pcsd web UI) in PCS versions up to 0.9.139. It is a race condition where a global username-validation variable can be exploited by an authenticated remote user to perform actions with higher privileges after another user is authen...
CVE-2015-5189
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for security after another user is authenticated...