Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for pacemaker

This update for pacemaker fixes the following issues:

Security issues fixed:
- CVE-2016-7797: Notify other clients of a new connection only if the handshake has completed (bsc#967388, bsc#1002767).
- CVE-2016-7035: Fixed improper IPC guarding in pacemaker (bsc#1007433).

Bug fixes:
- bsc#1003565: crmd: Record pending operations in the CIB before they are performed
- bsc#1000743: pengine: Do not fence a maintenance node if it shuts down cleanly
- bsc#987348: ping: Avoid temporary files for fping check
- bsc#986644: libcrmcommon: report errors consistently when waiting for data on connection
- bsc#986644: remote: Correctly calculate the remaining timeouts when receiving messages

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Fixed bugs
bnc#987348
ping resource agent can fail silently
bnc#1000743
Maintenance node gets fenced although it shuts down cleanly
bnc#1007433
VUL-0: CVE-2016-7035: pacemaker: improper IPC guarding
bnc#967388
DoS: valid authkey should be required for takeover of a Pacemaker remote
bnc#1003565
Partner-L3: pacemaker_remoted fails to start
bnc#1002767
VUL-0: CVE-2016-7797: pacemaker: PCS remote nodes vulnerable to hijacking, resulting in a DoS attack
bnc#986644
Compute nodes rebooting every few days
CVE-2016-7035
CVE-2016-7797
Selected Binaries
openSUSE Build Service is sponsored by
Places