Security update for pacemaker (important)

2016-11-2215:07:40

lists.opensuse.org

0.023 Low

EPSS

Percentile

89.7%

JSON

This update for pacemaker fixes the following issues:

Security issues fixed:

CVE-2016-7797: Notify other clients of a new connection only if the
handshake has completed (bsc#967388, bsc#1002767).
CVE-2016-7035: Fixed improper IPC guarding in pacemaker (bsc#1007433).

Bug fixes:

bsc#1003565: crmd: Record pending operations in the CIB before they are
performed
bsc#1000743: pengine: Do not fence a maintenance node if it shuts down
cleanly
bsc#987348: ping: Avoid temporary files for fping check
bsc#986644: libcrmcommon: report errors consistently when waiting for
data on connection
bsc#986644: remote: Correctly calculate the remaining timeouts when
receiving messages

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Software Development Kit12.2ppc64lepacemaker-debuginfo< 1.1.15-21.1pacemaker-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise High Availability12.2ppc64lelibpacemaker3-debuginfo< 1.1.15-21.1libpacemaker3-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise Software Development Kit12.2aarch64libpacemaker-devel< 1.1.15-21.1libpacemaker-devel-1.1.15-21.1.aarch64.rpm
SUSE Linux Enterprise High Availability12.2x86_64pacemaker-cli-debuginfo< 1.1.15-21.1pacemaker-cli-debuginfo-1.1.15-21.1.x86_64.rpm
SUSE Linux Enterprise High Availability12.2ppc64lepacemaker-debuginfo< 1.1.15-21.1pacemaker-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise Software Development Kit12.2s390xpacemaker-cts-debuginfo< 1.1.15-21.1pacemaker-cts-debuginfo-1.1.15-21.1.s390x.rpm
SUSE Linux Enterprise High Availability12.2x86_64pacemaker-remote< 1.1.15-21.1pacemaker-remote-1.1.15-21.1.x86_64.rpm
SUSE Linux Enterprise High Availability12.2s390xlibpacemaker3< 1.1.15-21.1libpacemaker3-1.1.15-21.1.s390x.rpm
SUSE Linux Enterprise High Availability12.2ppc64lepacemaker-cts< 1.1.15-21.1pacemaker-cts-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise High Availability12.2ppc64lepacemaker-debugsource< 1.1.15-21.1pacemaker-debugsource-1.1.15-21.1.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Software Development Kit	12.2	ppc64le	pacemaker-debuginfo	< 1.1.15-21.1	pacemaker-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise High Availability	12.2	ppc64le	libpacemaker3-debuginfo	< 1.1.15-21.1	libpacemaker3-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise Software Development Kit	12.2	aarch64	libpacemaker-devel	< 1.1.15-21.1	libpacemaker-devel-1.1.15-21.1.aarch64.rpm
SUSE Linux Enterprise High Availability	12.2	x86_64	pacemaker-cli-debuginfo	< 1.1.15-21.1	pacemaker-cli-debuginfo-1.1.15-21.1.x86_64.rpm
SUSE Linux Enterprise High Availability	12.2	ppc64le	pacemaker-debuginfo	< 1.1.15-21.1	pacemaker-debuginfo-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise Software Development Kit	12.2	s390x	pacemaker-cts-debuginfo	< 1.1.15-21.1	pacemaker-cts-debuginfo-1.1.15-21.1.s390x.rpm
SUSE Linux Enterprise High Availability	12.2	x86_64	pacemaker-remote	< 1.1.15-21.1	pacemaker-remote-1.1.15-21.1.x86_64.rpm
SUSE Linux Enterprise High Availability	12.2	s390x	libpacemaker3	< 1.1.15-21.1	libpacemaker3-1.1.15-21.1.s390x.rpm
SUSE Linux Enterprise High Availability	12.2	ppc64le	pacemaker-cts	< 1.1.15-21.1	pacemaker-cts-1.1.15-21.1.ppc64le.rpm
SUSE Linux Enterprise High Availability	12.2	ppc64le	pacemaker-debugsource	< 1.1.15-21.1	pacemaker-debugsource-1.1.15-21.1.ppc64le.rpm