logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2018-16877

Description

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.


Affected Package


OS OS Version Package Name Package Version
ubuntu 18.10 pacemaker 1.1.18-2ubuntu1.18.10.1
ubuntu 19.04 pacemaker 1.1.18-2ubuntu1.19.04.1
ubuntu 14.04 pacemaker any
ubuntu upstream pacemaker any
ubuntu 16.04 pacemaker 1.1.14-2ubuntu1.6

Related