Information on source package pacemaker

Available versions

ReleaseVersion
stretch1.1.16-1
stretch (security)1.1.16-1+deb9u2
buster2.0.1-5
buster (security)2.0.1-5+deb10u1
bullseye2.0.5~rc3-1
sid2.0.5~rc3-1

Open issues

BugstretchbusterbullseyesidDescription
CVE-2020-25654vulnerablefixedfixedfixedAn ACL bypass flaw was found in pacemaker before 1.1.24-rc1 and 2.0.5- ...
CVE-2018-16878vulnerable (no DSA)fixedfixedfixedA flaw was found in pacemaker up to and including version 2.0.1. An in ...
CVE-2018-16877vulnerable (no DSA)fixedfixedfixedA flaw was found in the way pacemaker's client-server authentication w ...

Resolved issues

BugDescription
CVE-2019-3885A use-after-free flaw was found in pacemaker up to and including versi ...
CVE-2016-7797Pacemaker before 1.1.15, when using pacemaker remote, might allow remo ...
CVE-2016-7035An authorization flaw was found in Pacemaker before 1.1.16, where it d ...
CVE-2015-1867Pacemaker before 1.1.13 does not properly evaluate added nodes, which ...
CVE-2013-0281Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configura ...
CVE-2011-5271Pacemaker before 1.1.6 configure script creates temporary files insecu ...

Security announcements

DSA / DLADescription
DLA-2447-2pacemaker - regression update
DSA-4791-1pacemaker - security update
DLA-2447-1pacemaker - security update

Search for package or bug name: Reporting problems