Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 521
Alerts This Week
Warning Icon 1 521

Fedora 25: 2016-11-10 Moderate: Pacemaker IPC Communication Issues

fedora
Calendar Grey November 10, 2016
Dist Fedora Esm H88
This RHEL security bulletin informs about the enhancement for cgroup concerning inadequate resource isolation. Safeguard your infrastructure today!
Security fix for CVE-2016-7035 (improper IPC guarding)

Summary

Pacemaker is an advanced, scalable High-Availability cluster resource

manager for Corosync, CMAN and/or Linux-HA.

It supports more than 16 node clusters with significant capabilities

for managing resources and dependencies.

It will run scripts at initialization, when machines go up or down,

when related resources fail and can be configured to periodically check

resource health.

Available rpmbuild rebuild options:

--with(out) : doc coverage profiling upstart_job pre_release hardening

Update Information:

Security fix for CVE-2016-7035 (improper IPC guarding)

Change Log

References


[ 1 ] Bug #1369732 - CVE-2016-7035 pacemaker: Privilege escalation due to improper guarding of IPC communication https://bugzilla.redhat.com/show_bug.cgi?id=1369732

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade pacemaker' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
important
Lowest
Low
Medium
High
Critical

Name: pacemaker
Product: Fedora 25
Version: 1.1.15
Release: 3.fc25
Summary: Scalable High-Availability cluster resource manager

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.