cvelistv5 - cve-2018-16877

CVE-2018-16877 (GCVE-0-2018-16877)

Vulnerability from cvelistv5

Published

2019-04-18 00:00

Modified

2024-08-05 10:32

Severity ?

8.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE

CWE-287

Summary

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.

References

►

URL

	Vendor	Product	Version
	ClusterLabs	pacemaker	Version: affects up to and including Pacemaker-2.0.0

suse-su-2020:1072-1

Vulnerability from csaf_suse

Published

2020-04-22 17:37

Modified

2020-04-22 17:37

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

This update for pacemaker fixes the following issues: - CVE-2018-16877: Fixed an issue with insufficient local IPC client-server authentication on the client's side (bsc#1131356). - CVE-2018-16878: Fixed a denial of service related to insufficient verification of uncontrolled processes (bsc#1131353).

Patchnames

SUSE-2020-1072,SUSE-SLE-HA-12-SP2-2020-1072

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\n- CVE-2018-16877: Fixed an issue with insufficient local IPC client-server authentication on the client\u0027s side (bsc#1131356).\n- CVE-2018-16878: Fixed a denial of service related to insufficient verification of uncontrolled processes (bsc#1131353).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2020-1072,SUSE-SLE-HA-12-SP2-2020-1072",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_1072-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2020:1072-1",
        "url": "https://www.suse.com/support/update/announcement/2020/suse-su-20201072-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2020:1072-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2020-April/006725.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2020-04-22T17:37:02Z",
      "generator": {
        "date": "2020-04-22T17:37:02Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2020:1072-1",
      "initial_release_date": "2020-04-22T17:37:02Z",
      "revision_history": [
        {
          "date": "2020-04-22T17:37:02Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.aarch64",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.aarch64",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.aarch64",
                  "product_id": "pacemaker-1.1.15-23.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.aarch64",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.aarch64",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.aarch64",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.aarch64",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.i586",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.i586",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.i586",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.i586",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.i586",
                  "product_id": "pacemaker-1.1.15-23.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.i586",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.i586",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.i586",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.i586",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.ppc64le",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.ppc64le",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.ppc64le",
                  "product_id": "pacemaker-1.1.15-23.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.ppc64le",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.ppc64le",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.ppc64le",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.ppc64le",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.s390",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.s390",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.s390",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.s390",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.s390",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.s390",
                  "product_id": "pacemaker-1.1.15-23.9.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.s390",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.s390",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.s390",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.s390",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.s390",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.s390",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.s390x",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.s390x",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.s390x",
                  "product_id": "pacemaker-1.1.15-23.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.s390x",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.s390x",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.s390x",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.s390x",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.15-23.9.1.x86_64",
                  "product_id": "libpacemaker-devel-1.1.15-23.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.15-23.9.1.x86_64",
                  "product_id": "libpacemaker3-1.1.15-23.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "pacemaker-1.1.15-23.9.1.x86_64",
                  "product_id": "pacemaker-1.1.15-23.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.15-23.9.1.x86_64",
                  "product_id": "pacemaker-cli-1.1.15-23.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "pacemaker-cts-1.1.15-23.9.1.x86_64",
                  "product_id": "pacemaker-cts-1.1.15-23.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.15-23.9.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.15-23.9.1.x86_64",
                  "product_id": "pacemaker-remote-1.1.15-23.9.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.15-23.9.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le"
        },
        "product_reference": "libpacemaker3-1.1.15-23.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.15-23.9.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x"
        },
        "product_reference": "libpacemaker3-1.1.15-23.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.15-23.9.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.15-23.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.15-23.9.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le"
        },
        "product_reference": "pacemaker-1.1.15-23.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.15-23.9.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x"
        },
        "product_reference": "pacemaker-1.1.15-23.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.15-23.9.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64"
        },
        "product_reference": "pacemaker-1.1.15-23.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.15-23.9.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le"
        },
        "product_reference": "pacemaker-cli-1.1.15-23.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.15-23.9.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x"
        },
        "product_reference": "pacemaker-cli-1.1.15-23.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.15-23.9.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.15-23.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.15-23.9.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.15-23.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.15-23.9.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.15-23.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.15-23.9.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.15-23.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.15-23.9.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le"
        },
        "product_reference": "pacemaker-remote-1.1.15-23.9.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.15-23.9.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x"
        },
        "product_reference": "pacemaker-remote-1.1.15-23.9.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.15-23.9.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.15-23.9.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-04-22T17:37:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:libpacemaker3-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cli-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-cts-1.1.15-23.9.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:pacemaker-remote-1.1.15-23.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-04-22T17:37:02Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    }
  ]
}

suse-su-2019:1209-1

Vulnerability from csaf_suse

Published

2019-05-10 12:05

Modified

2019-05-10 12:05

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

This update for pacemaker fixes the following issues: Security issues fixed: - CVE-2019-3885: Fixed an information disclosure in log output. (bsc#1131357) - CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356) - CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353) Non-security issue fixed: - crmd: delete resource from lrmd when appropriate to avoid timeouts with crmsh (bsc#1117381).

Patchnames

SUSE-2019-1209,SUSE-SLE-Product-HA-15-2019-1209

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-3885: Fixed an information disclosure in log output. (bsc#1131357)\n- CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356)\n- CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)\n\nNon-security issue fixed:\n\n- crmd: delete resource from lrmd when appropriate to avoid timeouts with crmsh (bsc#1117381).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-1209,SUSE-SLE-Product-HA-15-2019-1209",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1209-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:1209-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191209-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:1209-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-May/005436.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117381",
        "url": "https://bugzilla.suse.com/1117381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131357",
        "url": "https://bugzilla.suse.com/1131357"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3885 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3885/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2019-05-10T12:05:03Z",
      "generator": {
        "date": "2019-05-10T12:05:03Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:1209-1",
      "initial_release_date": "2019-05-10T12:05:03Z",
      "revision_history": [
        {
          "date": "2019-05-10T12:05:03Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.i586",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.i586",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.i586",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.i586",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.i586",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.i586",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.i586",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
                "product": {
                  "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
                  "product_id": "pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 15",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 15",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch"
        },
        "product_reference": "pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15",
          "product_id": "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-10T12:05:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-10T12:05:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    },
    {
      "cve": "CVE-2019-3885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
          "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3885",
          "url": "https://www.suse.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131357 for CVE-2019-3885",
          "url": "https://bugzilla.suse.com/1131357"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker-devel-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:libpacemaker3-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cli-1.1.18+20180430.b12c320f5-3.9.4.x86_64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-cts-1.1.18+20180430.b12c320f5-3.9.4.noarch",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.aarch64",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.s390x",
            "SUSE Linux Enterprise High Availability Extension 15:pacemaker-remote-1.1.18+20180430.b12c320f5-3.9.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-10T12:05:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3885"
    }
  ]
}

suse-su-2019:1047-1

Vulnerability from csaf_suse

Published

2019-04-26 09:09

Modified

2019-04-26 09:09

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

This update for pacemaker fixes the following issues: Security issues fixed: - CVE-2019-3885: Fixed an information disclosure in log output. (bsc#1131357) - CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356) - CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353) Non-security issue fixed: - scheduler: Respect the order of constraints when relevant resources are being probed. (bsc#1117934, bsc#1128374)

Patchnames

SUSE-2019-1047,SUSE-SLE-HA-12-SP4-2019-1047,SUSE-SLE-SDK-12-SP4-2019-1047

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-3885: Fixed an information disclosure in log output. (bsc#1131357)\n- CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356)\n- CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)\n\nNon-security issue fixed:\n\n- scheduler: Respect the order of constraints when relevant resources are being probed. (bsc#1117934, bsc#1128374)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-1047,SUSE-SLE-HA-12-SP4-2019-1047,SUSE-SLE-SDK-12-SP4-2019-1047",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1047-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:1047-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191047-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:1047-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-April/005369.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117381",
        "url": "https://bugzilla.suse.com/1117381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117934",
        "url": "https://bugzilla.suse.com/1117934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1128374",
        "url": "https://bugzilla.suse.com/1128374"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1128772",
        "url": "https://bugzilla.suse.com/1128772"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131357",
        "url": "https://bugzilla.suse.com/1131357"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3885 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3885/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2019-04-26T09:09:12Z",
      "generator": {
        "date": "2019-04-26T09:09:12Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:1047-1",
      "initial_release_date": "2019-04-26T09:09:12Z",
      "revision_history": [
        {
          "date": "2019-04-26T09:09:12Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.i586",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-26T09:09:12Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-26T09:09:12Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    },
    {
      "cve": "CVE-2019-3885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3885",
          "url": "https://www.suse.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131357 for CVE-2019-3885",
          "url": "https://bugzilla.suse.com/1131357"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-26T09:09:12Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3885"
    }
  ]
}

suse-su-2019:2268-1

Vulnerability from csaf_suse

Published

2019-09-02 12:23

Modified

2019-09-02 12:23

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

This update for pacemaker fixes the following issues: Security issues fixed: - CVE-2018-16877: Fixed insufficient local IPC client-server authentication on the client's side. (bsc#1131356) - CVE-2018-16878: Fixed insufficient verification inflicted preference of uncontrolled processes (bsc#1131353) Other issues fixed: - stonith_admin --help: specify the usage of --cleanup (bsc#1135317) - scheduler: wait for probe actions to complete to prevent unnecessary restart/re-promote of dependent resources (bsc#1130122, bsc#1032511) - controller: confirm cancel of failed monitors (bsc#1133866) - controller: improve failed recurring action messages (bsc#1133866) - controller: directly acknowledge unrecordable operation results (bsc#1133866) - controller: be more tolerant of malformed executor events (bsc#1133866) - libcrmcommon: return error when applying XML diffs containing unknown operations (bsc#1127716) - libcrmcommon: avoid possible use-of-NULL when applying XML diffs (bsc#1127716) - libcrmcommon: correctly apply XML diffs with multiple move/create changes (bsc#1127716) - libcrmcommon: return proper code if testing pid is denied (bsc#1131353, bsc#1131356) - libcrmcommon: avoid use-of-NULL when checking whether process is active (bsc#1131353, bsc#1131356) - tools: run main loop for crm_resource clean-up with resource (bsc#1140519) - contoller,scheduler: guard hash table deletes (bsc#1136712)

Patchnames

SUSE-2019-2268,SUSE-SLE-HA-12-SP4-2019-2268,SUSE-SLE-SDK-12-SP4-2019-2268

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-16877: Fixed insufficient local IPC client-server authentication on the client\u0027s side. (bsc#1131356)\n- CVE-2018-16878: Fixed insufficient verification inflicted preference of uncontrolled processes (bsc#1131353)\n\nOther issues fixed:\n\n- stonith_admin --help: specify the usage of --cleanup (bsc#1135317)\n- scheduler: wait for probe actions to complete to prevent unnecessary restart/re-promote of dependent resources (bsc#1130122, bsc#1032511)\n- controller: confirm cancel of failed monitors (bsc#1133866)\n- controller: improve failed recurring action messages (bsc#1133866)\n- controller: directly acknowledge unrecordable operation results (bsc#1133866)\n- controller: be more tolerant of malformed executor events (bsc#1133866)\n- libcrmcommon: return error when applying XML diffs containing unknown operations (bsc#1127716)\n- libcrmcommon: avoid possible use-of-NULL when applying XML diffs (bsc#1127716)\n- libcrmcommon: correctly apply XML diffs with multiple move/create changes (bsc#1127716)\n- libcrmcommon: return proper code if testing pid is denied (bsc#1131353, bsc#1131356)\n- libcrmcommon: avoid use-of-NULL when checking whether process is active (bsc#1131353, bsc#1131356)\n- tools: run main loop for crm_resource clean-up with resource (bsc#1140519)\n- contoller,scheduler: guard hash table deletes (bsc#1136712)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-2268,SUSE-SLE-HA-12-SP4-2019-2268,SUSE-SLE-SDK-12-SP4-2019-2268",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2268-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:2268-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192268-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:2268-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-September/005872.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1032511",
        "url": "https://bugzilla.suse.com/1032511"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1127716",
        "url": "https://bugzilla.suse.com/1127716"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1130122",
        "url": "https://bugzilla.suse.com/1130122"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1133866",
        "url": "https://bugzilla.suse.com/1133866"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1135317",
        "url": "https://bugzilla.suse.com/1135317"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1136712",
        "url": "https://bugzilla.suse.com/1136712"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1140519",
        "url": "https://bugzilla.suse.com/1140519"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2019-09-02T12:23:04Z",
      "generator": {
        "date": "2019-09-02T12:23:04Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:2268-1",
      "initial_release_date": "2019-09-02T12:23:04Z",
      "revision_history": [
        {
          "date": "2019-09-02T12:23:04Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.i586",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
                  "product_id": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP4",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-09-02T12:23:04Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:libpacemaker3-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cli-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP4:pacemaker-remote-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:libpacemaker-devel-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP4:pacemaker-cts-1.1.19+20181105.ccd6b5b10-3.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-09-02T12:23:04Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    }
  ]
}

suse-su-2019:1108-1

Vulnerability from csaf_suse

Published

2019-04-30 10:57

Modified

2019-04-30 10:57

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

This update for pacemaker fixes the following issues: Security issues fixed: - CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356) - CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)

Patchnames

SUSE-2019-1108,SUSE-SLE-HA-12-SP3-2019-1108,SUSE-SLE-SDK-12-SP3-2019-1108

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356)\n- CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-1108,SUSE-SLE-HA-12-SP3-2019-1108,SUSE-SLE-SDK-12-SP3-2019-1108",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1108-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:1108-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191108-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:1108-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-April/005412.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2019-04-30T10:57:38Z",
      "generator": {
        "date": "2019-04-30T10:57:38Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:1108-1",
      "initial_release_date": "2019-04-30T10:57:38Z",
      "revision_history": [
        {
          "date": "2019-04-30T10:57:38Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.aarch64",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.aarch64",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.aarch64",
                  "product_id": "pacemaker-1.1.16-6.14.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.aarch64",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.aarch64",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.aarch64",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.aarch64",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.i586",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.i586",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.i586",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.i586",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.i586",
                  "product_id": "pacemaker-1.1.16-6.14.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.i586",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.i586",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.i586",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.i586",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.ppc64le",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.ppc64le",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.ppc64le",
                  "product_id": "pacemaker-1.1.16-6.14.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.ppc64le",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.ppc64le",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.ppc64le",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.ppc64le",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.s390",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.s390",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.s390",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.s390",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.s390",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.s390",
                  "product_id": "pacemaker-1.1.16-6.14.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.s390",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.s390",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.s390",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.s390",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.s390",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.s390",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.s390x",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.s390x",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.s390x",
                  "product_id": "pacemaker-1.1.16-6.14.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.s390x",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.s390x",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.s390x",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.s390x",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.16-6.14.1.x86_64",
                  "product_id": "libpacemaker-devel-1.1.16-6.14.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.16-6.14.1.x86_64",
                  "product_id": "libpacemaker3-1.1.16-6.14.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "pacemaker-1.1.16-6.14.1.x86_64",
                  "product_id": "pacemaker-1.1.16-6.14.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.16-6.14.1.x86_64",
                  "product_id": "pacemaker-cli-1.1.16-6.14.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "pacemaker-cts-1.1.16-6.14.1.x86_64",
                  "product_id": "pacemaker-cts-1.1.16-6.14.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.16-6.14.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.16-6.14.1.x86_64",
                  "product_id": "pacemaker-remote-1.1.16-6.14.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "libpacemaker3-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x"
        },
        "product_reference": "libpacemaker3-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "pacemaker-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x"
        },
        "product_reference": "pacemaker-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "pacemaker-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "pacemaker-cli-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x"
        },
        "product_reference": "pacemaker-cli-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "pacemaker-remote-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x"
        },
        "product_reference": "pacemaker-remote-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.16-6.14.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64"
        },
        "product_reference": "libpacemaker-devel-1.1.16-6.14.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "libpacemaker-devel-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x"
        },
        "product_reference": "libpacemaker-devel-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "libpacemaker-devel-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.16-6.14.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
        },
        "product_reference": "pacemaker-cts-1.1.16-6.14.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-30T10:57:38Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:libpacemaker3-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cli-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:pacemaker-remote-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:libpacemaker-devel-1.1.16-6.14.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:pacemaker-cts-1.1.16-6.14.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-04-30T10:57:38Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    }
  ]
}

gsd-2018-16877

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

Aliases

CVE-2018-16877

Aliases

CVE-2018-16877

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-16877",
    "description": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
    "id": "GSD-2018-16877",
    "references": [
      "https://www.suse.com/security/cve/CVE-2018-16877.html",
      "https://access.redhat.com/errata/RHSA-2019:1279",
      "https://access.redhat.com/errata/RHSA-2019:1278",
      "https://ubuntu.com/security/CVE-2018-16877",
      "https://advisories.mageia.org/CVE-2018-16877.html",
      "https://linux.oracle.com/cve/CVE-2018-16877.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-16877"
      ],
      "details": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
      "id": "GSD-2018-16877",
      "modified": "2023-12-13T01:22:25.947040Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2018-16877",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "pacemaker",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "affects up to and including Pacemaker-2.0.0"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "ClusterLabs"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation."
          }
        ]
      },
      "impact": {
        "cvss": [
          [
            {
              "vectorString": "8.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
              "version": "3.0"
            }
          ]
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-287"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877"
          },
          {
            "name": "https://github.com/ClusterLabs/pacemaker/pull/1749",
            "refsource": "CONFIRM",
            "url": "https://github.com/ClusterLabs/pacemaker/pull/1749"
          },
          {
            "name": "USN-3952-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3952-1/"
          },
          {
            "name": "108042",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/108042"
          },
          {
            "name": "FEDORA-2019-e4c8de3fb7",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/"
          },
          {
            "name": "FEDORA-2019-e71f6f36ac",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/"
          },
          {
            "name": "FEDORA-2019-b502250ba4",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/"
          },
          {
            "name": "openSUSE-SU-2019:1342",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html"
          },
          {
            "name": "openSUSE-SU-2019:1400",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html"
          },
          {
            "name": "RHSA-2019:1278",
            "refsource": "REDHAT",
            "url": "https://access.redhat.com/errata/RHSA-2019:1278"
          },
          {
            "name": "RHSA-2019:1279",
            "refsource": "REDHAT",
            "url": "https://access.redhat.com/errata/RHSA-2019:1279"
          },
          {
            "name": "[debian-lts-announce] 20210106 [SECURITY] [DLA 2519-1] pacemaker security update",
            "refsource": "MLIST",
            "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html"
          },
          {
            "name": "GLSA-202309-09",
            "refsource": "GENTOO",
            "url": "https://security.gentoo.org/glsa/202309-09"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.0.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2018-16877"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/ClusterLabs/pacemaker/pull/1749",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/ClusterLabs/pacemaker/pull/1749"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877"
            },
            {
              "name": "USN-3952-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3952-1/"
            },
            {
              "name": "108042",
              "refsource": "BID",
              "tags": [
                "Broken Link"
              ],
              "url": "http://www.securityfocus.com/bid/108042"
            },
            {
              "name": "FEDORA-2019-e4c8de3fb7",
              "refsource": "FEDORA",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/"
            },
            {
              "name": "FEDORA-2019-e71f6f36ac",
              "refsource": "FEDORA",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/"
            },
            {
              "name": "FEDORA-2019-b502250ba4",
              "refsource": "FEDORA",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/"
            },
            {
              "name": "openSUSE-SU-2019:1342",
              "refsource": "SUSE",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html"
            },
            {
              "name": "openSUSE-SU-2019:1400",
              "refsource": "SUSE",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html"
            },
            {
              "name": "RHSA-2019:1279",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2019:1279"
            },
            {
              "name": "RHSA-2019:1278",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2019:1278"
            },
            {
              "name": "[debian-lts-announce] 20210106 [SECURITY] [DLA 2519-1] pacemaker security update",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html"
            },
            {
              "name": "GLSA-202309-09",
              "refsource": "GENTOO",
              "tags": [],
              "url": "https://security.gentoo.org/glsa/202309-09"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-09-29T11:15Z",
      "publishedDate": "2019-04-18T18:29Z"
    }
  }
}

opensuse-su-2024:11138-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 on GA media

Notes

Title of the patch

libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 on GA media

Description of the patch

These are all security issues fixed in the libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-11138

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11138",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11138-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3885 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3885/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25654 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25654/"
      }
    ],
    "title": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11138-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                "product": {
                  "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
                  "product_id": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                "product": {
                  "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
                  "product_id": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                "product": {
                  "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
                  "product_id": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
                  "product_id": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64"
        },
        "product_reference": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le"
        },
        "product_reference": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x"
        },
        "product_reference": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        },
        "product_reference": "pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2019-3885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3885",
          "url": "https://www.suse.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131357 for CVE-2019-3885",
          "url": "https://bugzilla.suse.com/1131357"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3885"
    },
    {
      "cve": "CVE-2020-25654",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25654"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An ACL bypass flaw was found in pacemaker. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tasks that they would be prevented by ACLs from doing if they went through the configuration.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
          "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25654",
          "url": "https://www.suse.com/security/cve/CVE-2020-25654"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173668 for CVE-2020-25654",
          "url": "https://bugzilla.suse.com/1173668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177916 for CVE-2020-25654",
          "url": "https://bugzilla.suse.com/1177916"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196165 for CVE-2020-25654",
          "url": "https://bugzilla.suse.com/1196165"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:libpacemaker3-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cli-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-cts-2.1.0+20210816.c6a4f6e6c-1.1.x86_64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.aarch64",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.ppc64le",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.s390x",
            "openSUSE Tumbleweed:pacemaker-remote-2.1.0+20210816.c6a4f6e6c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-25654"
    }
  ]
}

opensuse-su-2019:1400-1

Vulnerability from csaf_opensuse

Published

2019-05-15 14:47

Modified

2019-05-15 14:47

Summary

Security update for pacemaker

Notes

Title of the patch

Security update for pacemaker

Description of the patch

Patchnames

openSUSE-2019-1400

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for pacemaker",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for pacemaker fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-3885: Fixed an information disclosure in log output. (bsc#1131357)\n- CVE-2018-16877: Fixed a local privilege escalation through insufficient IPC client-server authentication. (bsc#1131356)\n- CVE-2018-16878: Fixed a denial of service through insufficient verification inflicted preference of uncontrolled processes. (bsc#1131353)\n\nNon-security issue fixed:\n\n- crmd: delete resource from lrmd when appropriate to avoid timeouts with crmsh (bsc#1117381).\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2019-1400",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_1400-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2019:1400-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YPE4TWWC6FW57WVVOZ7ZZGIDXYSODXAF/#YPE4TWWC6FW57WVVOZ7ZZGIDXYSODXAF"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2019:1400-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YPE4TWWC6FW57WVVOZ7ZZGIDXYSODXAF/#YPE4TWWC6FW57WVVOZ7ZZGIDXYSODXAF"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1117381",
        "url": "https://bugzilla.suse.com/1117381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131353",
        "url": "https://bugzilla.suse.com/1131353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131356",
        "url": "https://bugzilla.suse.com/1131356"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1131357",
        "url": "https://bugzilla.suse.com/1131357"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16877 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16878 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16878/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3885 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3885/"
      }
    ],
    "title": "Security update for pacemaker",
    "tracking": {
      "current_release_date": "2019-05-15T14:47:48Z",
      "generator": {
        "date": "2019-05-15T14:47:48Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2019:1400-1",
      "initial_release_date": "2019-05-15T14:47:48Z",
      "revision_history": [
        {
          "date": "2019-05-15T14:47:48Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
                "product": {
                  "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
                  "product_id": "pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                  "product_id": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                  "product_id": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                  "product_id": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                  "product_id": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                "product": {
                  "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
                  "product_id": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.0",
                "product": {
                  "name": "openSUSE Leap 15.0",
                  "product_id": "openSUSE Leap 15.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        },
        "product_reference": "libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        },
        "product_reference": "pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        },
        "product_reference": "pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch"
        },
        "product_reference": "pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0",
          "product_id": "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        },
        "product_reference": "pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16877",
          "url": "https://www.suse.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131356 for CVE-2018-16877",
          "url": "https://bugzilla.suse.com/1131356"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-15T14:47:48Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16878",
          "url": "https://www.suse.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131353 for CVE-2018-16878",
          "url": "https://bugzilla.suse.com/1131353"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-15T14:47:48Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16878"
    },
    {
      "cve": "CVE-2019-3885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
          "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
          "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3885",
          "url": "https://www.suse.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131357 for CVE-2019-3885",
          "url": "https://bugzilla.suse.com/1131357"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker-devel-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:libpacemaker3-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-cli-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64",
            "openSUSE Leap 15.0:pacemaker-cts-1.1.18+20180430.b12c320f5-lp150.2.9.1.noarch",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.i586",
            "openSUSE Leap 15.0:pacemaker-remote-1.1.18+20180430.b12c320f5-lp150.2.9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-05-15T14:47:48Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3885"
    }
  ]
}

fkie_cve-2018-16877

Vulnerability from fkie_nvd

Published

2019-04-18 18:29

Modified

2024-11-21 03:53

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html	Mailing List, Third Party Advisory
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html	Mailing List, Third Party Advisory
secalert@redhat.com	http://www.securityfocus.com/bid/108042	Broken Link
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2019:1278	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2019:1279	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877	Issue Tracking, Patch, Third Party Advisory
secalert@redhat.com	https://github.com/ClusterLabs/pacemaker/pull/1749	Patch, Third Party Advisory
secalert@redhat.com	https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html	Mailing List, Third Party Advisory
secalert@redhat.com	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/
secalert@redhat.com	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/
secalert@redhat.com	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/
secalert@redhat.com	https://security.gentoo.org/glsa/202309-09
secalert@redhat.com	https://usn.ubuntu.com/3952-1/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/108042	Broken Link
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2019:1278	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2019:1279	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877	Issue Tracking, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/ClusterLabs/pacemaker/pull/1749	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/
af854a3a-2127-422b-91ae-364da2661108	https://security.gentoo.org/glsa/202309-09
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3952-1/	Third Party Advisory

Impacted products

Vendor	Product	Version
clusterlabs	pacemaker	*
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10
canonical	ubuntu_linux	19.04
fedoraproject	fedora	28
fedoraproject	fedora	29
fedoraproject	fedora	30
debian	debian_linux	9.0
opensuse	leap	15.0
opensuse	leap	42.3
redhat	enterprise_linux	8.0
redhat	enterprise_linux_eus	8.1
redhat	enterprise_linux_eus	8.2
redhat	enterprise_linux_eus	8.4
redhat	enterprise_linux_eus	8.6
redhat	enterprise_linux_server_aus	8.2
redhat	enterprise_linux_server_aus	8.4
redhat	enterprise_linux_server_aus	8.6
redhat	enterprise_linux_server_tus	8.2
redhat	enterprise_linux_server_tus	8.4
redhat	enterprise_linux_server_tus	8.6

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:clusterlabs:pacemaker:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B9669517-04A1-4A9B-9146-03427B3EE78B",
              "versionEndIncluding": "2.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
              "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
              "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD783B0C-9246-47D9-A937-6144FE8BFF0F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
              "matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
              "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "92BC9265-6959-4D37-BE5E-8C45E98992F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "831F0F47-3565-4763-B16F-C87B1FF2035E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E3F09B5-569F-4C58-9FCA-3C0953D107B5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C3741B8-851F-475D-B428-523F4F722350",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "6897676D-53F9-45B3-B27F-7FF9A4C58D33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E28F226A-CBC7-4A32-BE58-398FA5B42481",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "76C24D94-834A-4E9D-8F73-624AFA99AAA2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "B09ACF2D-D83F-4A86-8185-9569605D8EE1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC10D919-57FD-4725-B8D2-39ECB476902F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "1272DF03-7674-4BD4-8E64-94004B195448",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 un fallo en la forma en que se implement\u00f3 la autenticaci\u00f3n cliente-servidor del software Pacemaker, en versiones hasta la 2.0.0 inclusive. Un atacante local podr\u00eda utilizar este fallo, y combinarlo con otras debilidades del IPC, para lograr una escalada de privilegios locales."
    }
  ],
  "id": "CVE-2018-16877",
  "lastModified": "2024-11-21T03:53:30.623",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 6.0,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2019-04-18T18:29:00.297",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.securityfocus.com/bid/108042"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2019:1278"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2019:1279"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/ClusterLabs/pacemaker/pull/1749"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://security.gentoo.org/glsa/202309-09"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3952-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.securityfocus.com/bid/108042"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2019:1278"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2019:1279"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/ClusterLabs/pacemaker/pull/1749"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.gentoo.org/glsa/202309-09"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3952-1/"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-287"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

wid-sec-w-2023-2519

Vulnerability from csaf_certbund

Published

2019-05-27 22:00

Modified

2023-09-28 22:00

Summary

Red Hat Pacemaker: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Pacemaker ausnutzen, um seine Privilegien zu erhöhen, einen Denial of Service zu verursachen oder Informationen offenzulegen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Pacemaker ausnutzen, um seine Privilegien zu erh\u00f6hen, einen Denial of Service zu verursachen oder Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2519 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2023-2519.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2519 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2519"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202309-09 vom 2023-09-29",
        "url": "https://security.gentoo.org/glsa/202309-09"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisories vom 2019-05-27",
        "url": "https://access.redhat.com/errata/RHSA-2019:1278"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisories vom 2019-05-27",
        "url": "https://access.redhat.com/errata/RHSA-2019:1279"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2019:2268-1 vom 2019-09-02",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192268-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2020:1072-1 vom 2020-04-24",
        "url": "https://www.suse.com/support/update/announcement/2020/suse-su-20201072-1.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Pacemaker: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-09-28T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:59:15.038+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2519",
      "initial_release_date": "2019-05-27T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2019-05-27T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2019-09-02T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2020-04-23T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-09-28T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Gentoo aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux 7",
                "product": {
                  "name": "Red Hat Enterprise Linux 7",
                  "product_id": "T006643",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux 8",
                "product": {
                  "name": "Red Hat Enterprise Linux 8",
                  "product_id": "T014111",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:8"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16877",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat Pacemaker. Diese besteht aufgrund einer unsachgem\u00e4\u00dfen Implementierung der Client-Server-Authentifizierung. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen um seine Rechte zu erweitern und unter bestimmten Voraussetzungen beliebigen Code als Root auszuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006643",
          "T002207",
          "T012167",
          "T014111"
        ]
      },
      "release_date": "2019-05-27T22:00:00.000+00:00",
      "title": "CVE-2018-16877"
    },
    {
      "cve": "CVE-2018-16878",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat Pacemaker. Eine unzureichende \u00dcberpr\u00fcfung von Eingaben f\u00fchrt zu einer Priorisierung unkontrollierter Prozesse. Diese Schwachstelle kann ein lokaler Angreifer ausnutzen um einen Denial of Service zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006643",
          "T002207",
          "T012167",
          "T014111"
        ]
      },
      "release_date": "2019-05-27T22:00:00.000+00:00",
      "title": "CVE-2018-16878"
    },
    {
      "cve": "CVE-2019-3885",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat Pacemaker. Diese besteht aufgrund eines Use-After-Free Fehlers. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um \u00fcber die System Logs potentiell sensitive Daten offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006643",
          "T002207",
          "T012167",
          "T014111"
        ]
      },
      "release_date": "2019-05-27T22:00:00.000+00:00",
      "title": "CVE-2019-3885"
    }
  ]
}

rhsa-2019:1279

Vulnerability from csaf_redhat

Published

2019-05-27 16:00

Modified

2024-11-22 12:56

Summary

Red Hat Security Advisory: pacemaker security and bug fix update

Notes

Topic

An update for pacemaker is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Security Fix(es): * pacemaker: Insufficient local IPC client-server authentication on the client's side can lead to local privesc (CVE-2018-16877) * pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS (CVE-2018-16878) * pacemaker: Information disclosure through use-after-free (CVE-2019-3885) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Interrupted live migration will get full start rather than completed migration (BZ#1695247)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for pacemaker is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. \n\nSecurity Fix(es):\n\n* pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc (CVE-2018-16877)\n\n* pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS (CVE-2018-16878)\n\n* pacemaker: Information disclosure through use-after-free (CVE-2019-3885)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* Interrupted live migration will get full start rather than completed migration (BZ#1695247)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:1279",
        "url": "https://access.redhat.com/errata/RHSA-2019:1279"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1652646",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652646"
      },
      {
        "category": "external",
        "summary": "1657962",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1657962"
      },
      {
        "category": "external",
        "summary": "1694554",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1694554"
      },
      {
        "category": "external",
        "summary": "1695247",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1695247"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1279.json"
      }
    ],
    "title": "Red Hat Security Advisory: pacemaker security and bug fix update",
    "tracking": {
      "current_release_date": "2024-11-22T12:56:09+00:00",
      "generator": {
        "date": "2024-11-22T12:56:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:1279",
      "initial_release_date": "2019-05-27T16:00:54+00:00",
      "revision_history": [
        {
          "date": "2019-05-27T16:00:54+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-05-27T16:00:54+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T12:56:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.0.0.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux High Availability (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux High Availability (v. 8)",
                  "product_id": "HighAvailability-8.0.0.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::highavailability"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Resilient Storage (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux Resilient Storage (v. 8)",
                  "product_id": "ResilientStorage-8.0.0.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::resilientstorage"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
                "product": {
                  "name": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
                  "product_id": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@2.0.1-4.el8_0.3?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
                "product": {
                  "name": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
                  "product_id": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cts@2.0.1-4.el8_0.3?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
                "product": {
                  "name": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
                  "product_id": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-doc@2.0.1-4.el8_0.3?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
                "product": {
                  "name": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
                  "product_id": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-schemas@2.0.1-4.el8_0.3?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-debuginfo@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debugsource@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs-debuginfo@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli-debuginfo@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote-debuginfo@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
                "product": {
                  "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
                  "product_id": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@2.0.1-4.el8_0.3?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-debuginfo@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debugsource@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs-debuginfo@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli-debuginfo@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote-debuginfo@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
                "product": {
                  "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
                  "product_id": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@2.0.1-4.el8_0.3?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-debuginfo@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debugsource@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs-debuginfo@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli-debuginfo@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote-debuginfo@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
                "product": {
                  "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
                  "product_id": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@2.0.1-4.el8_0.3?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-debuginfo@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debugsource@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs-debuginfo@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli-debuginfo@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote-debuginfo@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
                "product": {
                  "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_id": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@2.0.1-4.el8_0.3?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debugsource@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-debuginfo@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs-debuginfo@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli-debuginfo@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                "product": {
                  "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_id": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote-debuginfo@2.0.1-4.el8_0.3?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-0:2.0.1-4.el8_0.3.src",
                "product": {
                  "name": "pacemaker-0:2.0.1-4.el8_0.3.src",
                  "product_id": "pacemaker-0:2.0.1-4.el8_0.3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@2.0.1-4.el8_0.3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.src",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "AppStream-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.src as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.src",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux High Availability (v. 8)",
          "product_id": "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "HighAvailability-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.src as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.src",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64 as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64"
        },
        "product_reference": "pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch as a component of Red Hat Enterprise Linux Resilient Storage (v. 8)",
          "product_id": "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        },
        "product_reference": "pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
        "relates_to_product_reference": "ResilientStorage-8.0.0.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-16877",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "discovery_date": "2018-11-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1652646"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is essentially a design level security flaw which can be combined with other flaws to achieve local privilege escalation for clusters running pacemaker. The attacker needs to have access to the cluster node running pacemaker (AV:L). The attacker can use easily use the design flaw via the confused deputy problem to run the exploit (AC:L), also needs to have login access to the pacemaker node to run the exploit (PR:L). \n\nDue to the elevated privileges obtained, there is an impact to the system beyond the pacemaker node itself (S:C). Lastly due to the attacker\u0027s ability to run arbitrary code as root, confidentiality, integrity, and availability of the system is affected. (CIA:H)",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "RHBZ#1652646",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652646"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-16877",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16877",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16877"
        }
      ],
      "release_date": "2019-04-17T04:30:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:00:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1279"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-16878",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2018-11-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1657962"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in pacemaker. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "RHBZ#1657962",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1657962"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-16878",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16878",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16878"
        }
      ],
      "release_date": "2019-04-17T04:30:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:00:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1279"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2019-3885",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2019-04-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1694554"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free flaw was found in pacemaker which could result in certain sensitive information to be leaked via the system logs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Information disclosure through use-after-free",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
          "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
          "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
          "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "RHBZ#1694554",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1694554"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-3885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3885"
        }
      ],
      "release_date": "2019-04-17T09:45:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:00:54+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1279"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "AppStream-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "AppStream-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "AppStream-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "HighAvailability-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "HighAvailability-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "HighAvailability-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.src",
            "ResilientStorage-8.0.0.Z:pacemaker-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cli-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-cluster-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-cts-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-debugsource-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-doc-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-libs-devel-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-nagios-plugins-metadata-0:2.0.1-4.el8_0.3.noarch",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.aarch64",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.i686",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.ppc64le",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.s390x",
            "ResilientStorage-8.0.0.Z:pacemaker-remote-debuginfo-0:2.0.1-4.el8_0.3.x86_64",
            "ResilientStorage-8.0.0.Z:pacemaker-schemas-0:2.0.1-4.el8_0.3.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "pacemaker: Information disclosure through use-after-free"
    }
  ]
}

rhsa-2019:1278

Vulnerability from csaf_redhat

Published

2019-05-27 16:01

Modified

2024-11-22 12:56

Summary

Red Hat Security Advisory: pacemaker security update

Notes

Topic

An update for pacemaker is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for pacemaker is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. \n\nSecurity Fix(es):\n\n* pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc (CVE-2018-16877)\n\n* pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS (CVE-2018-16878)\n\n* pacemaker: Information disclosure through use-after-free (CVE-2019-3885)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:1278",
        "url": "https://access.redhat.com/errata/RHSA-2019:1278"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1652646",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652646"
      },
      {
        "category": "external",
        "summary": "1657962",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1657962"
      },
      {
        "category": "external",
        "summary": "1694554",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1694554"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1278.json"
      }
    ],
    "title": "Red Hat Security Advisory: pacemaker security update",
    "tracking": {
      "current_release_date": "2024-11-22T12:56:17+00:00",
      "generator": {
        "date": "2024-11-22T12:56:17+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:1278",
      "initial_release_date": "2019-05-27T16:01:32+00:00",
      "revision_history": [
        {
          "date": "2019-05-27T16:01:32+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-05-27T16:01:32+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T12:56:17+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server High Availability (v. 7)",
                  "product_id": "7Server-HighAvailability-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
                  "product_id": "7Server-ResilientStorage-7.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cts@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-doc@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
                "product": {
                  "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
                  "product_id": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.19-8.el7_6.5?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
                "product": {
                  "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
                  "product_id": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@1.1.19-8.el7_6.5?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
                "product": {
                  "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
                  "product_id": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.19-8.el7_6.5?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
                "product": {
                  "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
                  "product_id": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.19-8.el7_6.5?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
                "product": {
                  "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
                  "product_id": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.19-8.el7_6.5?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cts@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-doc@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
                "product": {
                  "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
                  "product_id": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.19-8.el7_6.5?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-nagios-plugins-metadata@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cli@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cts@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-doc@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-cluster-libs@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-remote@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-libs-devel@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
                "product": {
                  "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_id": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker-debuginfo@1.1.19-8.el7_6.5?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pacemaker-0:1.1.19-8.el7_6.5.src",
                "product": {
                  "name": "pacemaker-0:1.1.19-8.el7_6.5.src",
                  "product_id": "pacemaker-0:1.1.19-8.el7_6.5.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pacemaker@1.1.19-8.el7_6.5?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.src as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.src",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server High Availability (v. 7)",
          "product_id": "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-HighAvailability-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.src as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.src",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64 as a component of Red Hat Enterprise Linux Server Resilient Storage (v. 7)",
          "product_id": "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
        },
        "product_reference": "pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
        "relates_to_product_reference": "7Server-ResilientStorage-7.6.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-16877",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "discovery_date": "2018-11-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1652646"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is essentially a design level security flaw which can be combined with other flaws to achieve local privilege escalation for clusters running pacemaker. The attacker needs to have access to the cluster node running pacemaker (AV:L). The attacker can use easily use the design flaw via the confused deputy problem to run the exploit (AC:L), also needs to have login access to the pacemaker node to run the exploit (PR:L). \n\nDue to the elevated privileges obtained, there is an impact to the system beyond the pacemaker node itself (S:C). Lastly due to the attacker\u0027s ability to run arbitrary code as root, confidentiality, integrity, and availability of the system is affected. (CIA:H)",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "RHBZ#1652646",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652646"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-16877",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-16877"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16877",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16877"
        }
      ],
      "release_date": "2019-04-17T04:30:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:01:32+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1278"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "pacemaker: Insufficient local IPC client-server authentication on the client\u0027s side can lead to local privesc"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2018-16878",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2018-11-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1657962"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in pacemaker. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "RHBZ#1657962",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1657962"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-16878",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-16878"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16878",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16878"
        }
      ],
      "release_date": "2019-04-17T04:30:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:01:32+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1278"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jan Pokorn\u00fd"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2019-3885",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2019-04-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1694554"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free flaw was found in pacemaker which could result in certain sensitive information to be leaked via the system logs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "pacemaker: Information disclosure through use-after-free",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
          "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
          "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "RHBZ#1694554",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1694554"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-3885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-3885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-3885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3885"
        }
      ],
      "release_date": "2019-04-17T09:45:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-05-27T16:01:32+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:1278"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-HighAvailability-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-HighAvailability-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.src",
            "7Server-ResilientStorage-7.6.Z:pacemaker-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cli-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cluster-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-cts-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-debuginfo-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-doc-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.i686",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-libs-devel-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-nagios-plugins-metadata-0:1.1.19-8.el7_6.5.x86_64",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.ppc64le",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.s390x",
            "7Server-ResilientStorage-7.6.Z:pacemaker-remote-0:1.1.19-8.el7_6.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "pacemaker: Information disclosure through use-after-free"
    }
  ]
}

ghsa-5jf9-5f49-xqr5

Vulnerability from github

Published

2022-05-24 16:43

Modified

2022-10-07 18:16

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-16877"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-287"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2019-04-18T18:29:00Z",
    "severity": "HIGH"
  },
  "details": "A flaw was found in the way pacemaker\u0027s client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.",
  "id": "GHSA-5jf9-5f49-xqr5",
  "modified": "2022-10-07T18:16:04Z",
  "published": "2022-05-24T16:43:55Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16877"
    },
    {
      "type": "WEB",
      "url": "https://github.com/ClusterLabs/pacemaker/pull/1749"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2019:1278"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2019:1279"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16877"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00007.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3GCWFO7GL6MBU6C4BGFO3P6L77DIBBF3"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FY4M4RMIG2POKC6OOFQODGKPRYXHET2F"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HR6QUYGML735EI3HEEHYRDW7EG73BUH2"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202309-09"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3952-1"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00012.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/108042"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2018-16877 (GCVE-0-2018-16877)

Vulnerability from cvelistv5

Vulnerability from csaf_suse

Vulnerability from csaf_suse

Vulnerability from csaf_suse

Vulnerability from csaf_suse

Vulnerability from csaf_suse

Vulnerability from gsd

Vulnerability from csaf_opensuse

Vulnerability from csaf_opensuse

Vulnerability from fkie_nvd

Vulnerability from csaf_certbund

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from github

Tags

Sightings

Nomenclature