rpm package
suse/pacemaker&distro=SUSE Linux Enterprise Software Development Kit 12 SP4
pkg:rpm/suse/pacemaker&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-3885 | — | < 1.1.19+20181105.ccd6b5b10-3.10.1 | 1.1.19+20181105.ccd6b5b10-3.10.1 | Apr 18, 2019 | A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs. | ||
| CVE-2018-16878 | — | < 1.1.19+20181105.ccd6b5b10-3.10.1 | 1.1.19+20181105.ccd6b5b10-3.10.1 | Apr 18, 2019 | A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS | ||
| CVE-2018-16877 | — | < 1.1.19+20181105.ccd6b5b10-3.10.1 | 1.1.19+20181105.ccd6b5b10-3.10.1 | Apr 18, 2019 | A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation. |
- CVE-2019-3885Apr 18, 2019affected < 1.1.19+20181105.ccd6b5b10-3.10.1fixed 1.1.19+20181105.ccd6b5b10-3.10.1
A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.
- CVE-2018-16878Apr 18, 2019affected < 1.1.19+20181105.ccd6b5b10-3.10.1fixed 1.1.19+20181105.ccd6b5b10-3.10.1
A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS
- CVE-2018-16877Apr 18, 2019affected < 1.1.19+20181105.ccd6b5b10-3.10.1fixed 1.1.19+20181105.ccd6b5b10-3.10.1
A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.