[Git][security-tracker-team/security-tracker][master] pacemaker: Link to necessary commits for backport of security fixes.
Markus Koschany
apo at debian.org
Tue May 28 12:34:07 BST 2019
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0b775112 by Markus Koschany at 2019-05-28T11:33:22Z
pacemaker: Link to necessary commits for backport of security fixes.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21243,6 +21243,7 @@ CVE-2019-3885 (A use-after-free flaw was found in pacemaker up to and including
NOTE: https://www.openwall.com/lists/oss-security/2019/04/17/1
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1749 (master)
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1750 (1.1)
+ NOTE: https://lists.clusterlabs.org/pipermail/users/2019-May/025822.html
CVE-2019-3884
RESERVED
NOT-FOR-US: atomic-openshift
@@ -39678,11 +39679,13 @@ CVE-2018-16878 (A flaw was found in pacemaker up to and including version 2.0.1.
NOTE: https://www.openwall.com/lists/oss-security/2019/04/17/1
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1749 (master)
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1750 (1.1)
+ https://lists.clusterlabs.org/pipermail/users/2019-May/025822.html
CVE-2018-16877 (A flaw was found in the way pacemaker's client-server authentication w ...)
- pacemaker 2.0.1-3 (bug #927714)
NOTE: https://www.openwall.com/lists/oss-security/2019/04/17/1
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1749 (master)
NOTE: https://github.com/ClusterLabs/pacemaker/pull/1750 (1.1)
+ https://lists.clusterlabs.org/pipermail/users/2019-May/025822.html
CVE-2018-16876 (ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a infor ...)
{DSA-4396-1}
- ansible 2.7.6+dfsg-1 (bug #916102)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b775112910e7527b844d5205ebdf59ab78a9453
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b775112910e7527b844d5205ebdf59ab78a9453
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190528/92e3a9b8/attachment.html>
More information about the debian-security-tracker-commits
mailing list