2 matches found
CVE-2024-3049
CVE-2024-3049 affects Booth, the cluster ticket manager. A specially crafted hash can cause Booth to accept an invalid HMAC, enabling potential unauthorized behavior. Concrete details from connected docs show affected packages and exact patch versions: Debian fixed in 1.0-283-g9d4029a-2+deb12u1 (...
CVE-2022-2553
CVE-2022-2553 concerns the Booth cluster ticket manager. Multiple connected sources confirm the root cause: the authfile directive in the booth configuration is ignored, preventing proper authentication enforcement between nodes. This leads to a risk that nodes without the correct authentication ...