Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2016-7035
Vulnerability from cvelistv5
Published
2018-09-10 16:00
Modified
2024-08-06 01:50
Severity ?
EPSS score ?
Summary
An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | ClusterLabs | pacemaker |
Version: 1.1.16 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T01:50:46.829Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"name": "RHSA-2016:2614",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"name": "GLSA-201710-08",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"name": "[oss-security] 20161103 CVE-2016-7035 - pacemaker - improper IPC guarding",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"name": "RHSA-2016:2675",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"name": "[users] 20161103 [SECURITY] CVE-2016-7035 - pacemaker - improper IPC guarding",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"name": "94214",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94214"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "pacemaker",
"vendor": "ClusterLabs",
"versions": [
{
"status": "affected",
"version": "1.1.16"
}
]
}
],
"datePublic": "2016-11-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-285",
"description": "CWE-285",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-09-11T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"name": "RHSA-2016:2614",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"name": "GLSA-201710-08",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"name": "[oss-security] 20161103 CVE-2016-7035 - pacemaker - improper IPC guarding",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"name": "RHSA-2016:2675",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"name": "[users] 20161103 [SECURITY] CVE-2016-7035 - pacemaker - improper IPC guarding",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"name": "94214",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94214"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-7035",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "pacemaker",
"version": {
"version_data": [
{
"version_value": "1.1.16"
}
]
}
}
]
},
"vendor_name": "ClusterLabs"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "8.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
],
[
{
"vectorString": "7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-285"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"name": "RHSA-2016:2614",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"name": "GLSA-201710-08",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"name": "[oss-security] 20161103 CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"name": "RHSA-2016:2675",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"name": "[users] 20161103 [SECURITY] CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"name": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049",
"refsource": "CONFIRM",
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"name": "94214",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/94214"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-7035",
"datePublished": "2018-09-10T16:00:00",
"dateReserved": "2016-08-23T00:00:00",
"dateUpdated": "2024-08-06T01:50:46.829Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"1.1.16\", \"matchCriteriaId\": \"21A4C752-0684-49D8-8F63-8F5154B48A0C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BBCD86A-E6C7-4444-9D74-F861084090F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51EF4996-72F4-4FA4-814F-F5991E7A8318\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.\"}, {\"lang\": \"es\", \"value\": \"Se ha detectado un error en Pacemaker en versiones anteriores a la 1.1.6 por el que no proteg\\u00eda correctamente su interfaz IPC. Un atacante con una cuenta sin privilegios en un nodo Pacemaker podr\\u00eda emplear este error para, por ejemplo, forzar al demonio Local Resource Manager para que ejecute un script como root y, por lo tanto, obtenga acceso root a la m\\u00e1quina\"}]",
"id": "CVE-2016-7035",
"lastModified": "2024-11-21T02:57:19.557",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 6.0}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2018-09-10T16:29:00.247",
"references": "[{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2614.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2675.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/11/03/5\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94214\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/ClusterLabs/pacemaker/commit/5d71e65049\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201710-08\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2614.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2675.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2016/11/03/5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94214\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/ClusterLabs/pacemaker/commit/5d71e65049\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201710-08\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-285\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-285\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2016-7035\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-09-10T16:29:00.247\",\"lastModified\":\"2024-11-21T02:57:19.557\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.\"},{\"lang\":\"es\",\"value\":\"Se ha detectado un error en Pacemaker en versiones anteriores a la 1.1.6 por el que no proteg\u00eda correctamente su interfaz IPC. Un atacante con una cuenta sin privilegios en un nodo Pacemaker podr\u00eda emplear este error para, por ejemplo, forzar al demonio Local Resource Manager para que ejecute un script como root y, por lo tanto, obtenga acceso root a la m\u00e1quina\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.0,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-285\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-285\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.1.16\",\"matchCriteriaId\":\"21A4C752-0684-49D8-8F63-8F5154B48A0C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8442C20-41F9-47FD-9A12-E724D3A31FD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"}]}]}],\"references\":[{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2614.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2675.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/11/03/5\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94214\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ClusterLabs/pacemaker/commit/5d71e65049\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201710-08\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2614.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2675.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/11/03/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94214\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ClusterLabs/pacemaker/commit/5d71e65049\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201710-08\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
ghsa-5wmv-gcg2-v47h
Vulnerability from github
Published
2022-05-13 01:38
Modified
2022-05-13 01:38
Severity ?
Details
An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.
{
"affected": [],
"aliases": [
"CVE-2016-7035"
],
"database_specific": {
"cwe_ids": [
"CWE-285"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-09-10T16:29:00Z",
"severity": "HIGH"
},
"details": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"id": "GHSA-5wmv-gcg2-v47h",
"modified": "2022-05-13T01:38:43Z",
"published": "2022-05-13T01:38:43Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
},
{
"type": "WEB",
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"type": "WEB",
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/94214"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
rhsa-2016:2675
Vulnerability from csaf_redhat
Published
2016-11-08 13:21
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2675",
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2675.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security update",
"tracking": {
"current_release_date": "2024-11-22T10:22:04+00:00",
"generator": {
"date": "2024-11-22T10:22:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2675",
"initial_release_date": "2016-11-08T13:21:57+00:00",
"revision_history": [
{
"date": "2016-11-08T13:21:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-08T13:21:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-08T13:21:57+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
rhsa-2016_2614
Vulnerability from csaf_redhat
Published
2016-11-03 13:06
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security and bug fix update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Bug Fix(es):
* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).\n\nBug Fix(es):\n\n* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2614",
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "1389023",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389023"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2614.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:22:09+00:00",
"generator": {
"date": "2024-11-22T10:22:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2614",
"initial_release_date": "2016-11-03T13:06:04+00:00",
"revision_history": [
{
"date": "2016-11-03T13:06:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-03T13:06:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-03T13:06:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
rhsa-2016:2614
Vulnerability from csaf_redhat
Published
2016-11-03 13:06
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security and bug fix update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Bug Fix(es):
* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).\n\nBug Fix(es):\n\n* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2614",
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "1389023",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389023"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2614.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:22:09+00:00",
"generator": {
"date": "2024-11-22T10:22:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2614",
"initial_release_date": "2016-11-03T13:06:04+00:00",
"revision_history": [
{
"date": "2016-11-03T13:06:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-03T13:06:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-03T13:06:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
RHSA-2016:2675
Vulnerability from csaf_redhat
Published
2016-11-08 13:21
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2675",
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2675.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security update",
"tracking": {
"current_release_date": "2024-11-22T10:22:04+00:00",
"generator": {
"date": "2024-11-22T10:22:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2675",
"initial_release_date": "2016-11-08T13:21:57+00:00",
"revision_history": [
{
"date": "2016-11-08T13:21:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-08T13:21:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-08T13:21:57+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
RHSA-2016:2614
Vulnerability from csaf_redhat
Published
2016-11-03 13:06
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security and bug fix update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Bug Fix(es):
* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).\n\nBug Fix(es):\n\n* The version of Pacemaker in Red Hat Enterprise Linux 7.3 incorporated an increase in the version number of the remote node protocol. Consequently, cluster nodes running Pacemaker in Red Hat Enterprise Linux 7.3 and remote nodes running earlier versions of Red Hat Enterprise Linux were not able to communicate with each other unless special precautions were taken. This update preserves the rolling upgrade capability. (BZ#1389023)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2614",
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "1389023",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389023"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2614.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:22:09+00:00",
"generator": {
"date": "2024-11-22T10:22:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2614",
"initial_release_date": "2016-11-03T13:06:04+00:00",
"revision_history": [
{
"date": "2016-11-03T13:06:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-03T13:06:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.15-11.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_id": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.15-11.el7_3.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_id": "pacemaker-0:1.1.15-11.el7_3.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.15-11.el7_3.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
"product_id": "7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-HighAvailability-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.src as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.src",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
"product_id": "7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-ResilientStorage-7.3.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-03T13:06:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2614"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-HighAvailability-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-HighAvailability-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.src",
"7Server-ResilientStorage-7.3.Z:pacemaker-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cli-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cluster-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-cts-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-debuginfo-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-doc-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.i686",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-libs-devel-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-nagios-plugins-metadata-0:1.1.15-11.el7_3.2.x86_64",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.s390x",
"7Server-ResilientStorage-7.3.Z:pacemaker-remote-0:1.1.15-11.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
rhsa-2016_2675
Vulnerability from csaf_redhat
Published
2016-11-08 13:21
Modified
2024-11-22 10:22
Summary
Red Hat Security Advisory: pacemaker security update
Notes
Topic
An update for pacemaker is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.
Security Fix(es):
* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)
This issue was discovered by Jan "poki" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for pacemaker is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure.\n\nSecurity Fix(es):\n\n* An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine. (CVE-2016-7035)\n\nThis issue was discovered by Jan \"poki\" Pokorny (Red Hat) and Alain Moulle (ATOS/BULL).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2675",
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2675.json"
}
],
"title": "Red Hat Security Advisory: pacemaker security update",
"tracking": {
"current_release_date": "2024-11-22T10:22:04+00:00",
"generator": {
"date": "2024-11-22T10:22:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2675",
"initial_release_date": "2016-11-08T13:21:57+00:00",
"revision_history": [
{
"date": "2016-11-08T13:21:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-08T13:21:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:22:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-doc@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cli@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-cts@1.1.14-8.el6_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_id": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker-remote@1.1.14-8.el6_8.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_id": "pacemaker-0:1.1.14-8.el6_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pacemaker@1.1.14-8.el6_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 6)",
"product_id": "6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-HighAvailability-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.src as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.src",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 6)",
"product_id": "6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
},
"product_reference": "pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"relates_to_product_reference": "6Server-ResilientStorage-6.8.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Alain Moulle"
],
"organization": "ATOS/BULL"
},
{
"names": [
"Jan \"poki\" Pokorny"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-7035",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2016-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369732"
}
],
"notes": [
{
"category": "description",
"text": "An authorization flaw was found in Pacemaker, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pacemaker: Privilege escalation due to improper guarding of IPC communication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7035"
},
{
"category": "external",
"summary": "RHBZ#1369732",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369732"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7035",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7035"
}
],
"release_date": "2016-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-08T13:21:57+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2675"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-HighAvailability-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-HighAvailability-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.src",
"6Server-ResilientStorage-6.8.z:pacemaker-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cli-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cluster-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-cts-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-debuginfo-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-doc-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-libs-devel-0:1.1.14-8.el6_8.2.x86_64",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.i686",
"6Server-ResilientStorage-6.8.z:pacemaker-remote-0:1.1.14-8.el6_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pacemaker: Privilege escalation due to improper guarding of IPC communication"
}
]
}
cve-2016-7035
Vulnerability from fkie_nvd
Published
2018-09-10 16:29
Modified
2024-11-21 02:57
Severity ?
8.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| clusterlabs | pacemaker | * | |
| redhat | enterprise_linux_server | 6.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_server_eus | 7.3 | |
| redhat | enterprise_linux_server_eus | 7.4 | |
| redhat | enterprise_linux_server_eus | 7.5 | |
| redhat | enterprise_linux_server_eus | 7.6 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*",
"matchCriteriaId": "21A4C752-0684-49D8-8F63-8F5154B48A0C",
"versionEndIncluding": "1.1.16",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A8442C20-41F9-47FD-9A12-E724D3A31FD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"matchCriteriaId": "A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine."
},
{
"lang": "es",
"value": "Se ha detectado un error en Pacemaker en versiones anteriores a la 1.1.6 por el que no proteg\u00eda correctamente su interfaz IPC. Un atacante con una cuenta sin privilegios en un nodo Pacemaker podr\u00eda emplear este error para, por ejemplo, forzar al demonio Local Resource Manager para que ejecute un script como root y, por lo tanto, obtenga acceso root a la m\u00e1quina"
}
],
"id": "CVE-2016-7035",
"lastModified": "2024-11-21T02:57:19.557",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-09-10T16:29:00.247",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94214"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94214"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-08"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-285"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-285"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2016-7035
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-7035",
"description": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"id": "GSD-2016-7035",
"references": [
"https://www.suse.com/security/cve/CVE-2016-7035.html",
"https://access.redhat.com/errata/RHSA-2016:2675",
"https://access.redhat.com/errata/RHSA-2016:2614",
"https://ubuntu.com/security/CVE-2016-7035"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-7035"
],
"details": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.",
"id": "GSD-2016-7035",
"modified": "2023-12-13T01:21:20.303207Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-7035",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "pacemaker",
"version": {
"version_data": [
{
"version_value": "1.1.16"
}
]
}
}
]
},
"vendor_name": "ClusterLabs"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "8.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
}
],
[
{
"vectorString": "7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-285"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"name": "RHSA-2016:2614",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
},
{
"name": "GLSA-201710-08",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"name": "[oss-security] 20161103 CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"name": "RHSA-2016:2675",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"name": "[users] 20161103 [SECURITY] CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"name": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049",
"refsource": "CONFIRM",
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"name": "94214",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/94214"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.1.16",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-7035"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-285"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[users] 20161103 [SECURITY] CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.clusterlabs.org/pipermail/users/2016-November/004432.html"
},
{
"name": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/ClusterLabs/pacemaker/commit/5d71e65049"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7035"
},
{
"name": "[oss-security] 20161103 CVE-2016-7035 - pacemaker - improper IPC guarding",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/03/5"
},
{
"name": "GLSA-201710-08",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-08"
},
{
"name": "94214",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94214"
},
{
"name": "RHSA-2016:2675",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2675.html"
},
{
"name": "RHSA-2016:2614",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2614.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2019-10-09T23:19Z",
"publishedDate": "2018-09-10T16:29Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.