File _patchinfo of Package patchinfo.10130

<patchinfo incident="10130">
  <issue tracker="bnc" id="1131356">VUL-0: CVE-2018-16877: pacemaker:  Insufficient local IPC client-server authentication on the client's side</issue>
  <issue tracker="bnc" id="1131353">VUL-0: CVE-2018-16878: pacemaker: Insufficient verification inflicted preference of uncontrolled processes</issue>
  <issue tracker="cve" id="2018-16877"/>
  <issue tracker="cve" id="2018-16878"/>
  <summary>Security update for pacemaker</summary>
  <description>This update for pacemaker fixes the following issues:

Security issues fixed:

- CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356)
- CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)

This update was imported from the SUSE:SLE-12-SP3:Update update project.</description>
openSUSE Build Service is sponsored by