Back to pacemaker PTS page

Accepted pacemaker 1.1.24-0+deb9u1 (source) into oldstable

To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
Subject: Accepted pacemaker 1.1.24-0+deb9u1 (source) into oldstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Wed, 06 Jan 2021 21:50:13 +0000
Mail-followup-to: debian-lts@lists.debian.org
Message-id: <E1kxGh3-000855-1j@seger.debian.org>
Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 27 Dec 2020 23:50:36 +0100
Source: pacemaker
Binary: pacemaker-common pacemaker-resource-agents pacemaker pacemaker-cli-utils pacemaker-remote pacemaker-doc libcib4 libcib-dev libcrmcluster4 libcrmcluster-dev libcrmcommon3 libcrmcommon-dev libcrmservice3 libcrmservice-dev liblrmd1 liblrmd-dev libpe-rules2 libpe-status10 libpengine10 libpengine-dev libstonithd2 libstonithd-dev libtransitioner2
Architecture: source
Version: 1.1.24-0+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian HA Maintainers <debian-ha-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 libcib-dev - cluster resource manager CIB library development
 libcib4    - cluster resource manager CIB library
 libcrmcluster-dev - cluster resource manager cluster library development
 libcrmcluster4 - cluster resource manager cluster library
 libcrmcommon-dev - cluster resource manager common library development
 libcrmcommon3 - cluster resource manager common library
 libcrmservice-dev - cluster resource manager service library development
 libcrmservice3 - cluster resource manager service library
 liblrmd-dev - cluster resource manager LRMD library development
 liblrmd1   - cluster resource manager LRMD library
 libpe-rules2 - cluster resource manager Policy Engine rules library
 libpe-status10 - cluster resource manager Policy Engine status library
 libpengine-dev - cluster resource manager Policy Engine library development
 libpengine10 - cluster resource manager Policy Engine library
 libstonithd-dev - cluster resource manager STONITH daemon library development
 libstonithd2 - cluster resource manager STONITH daemon library
 libtransitioner2 - cluster resource manager transitioner library
 pacemaker  - cluster resource manager
 pacemaker-cli-utils - cluster resource manager command line utilities
 pacemaker-common - cluster resource manager common files
 pacemaker-doc - cluster resource manager HTML documentation
 pacemaker-remote - cluster resource manager proxy daemon for remote nodes
 pacemaker-resource-agents - cluster resource manager general resource agents
Changes:
 pacemaker (1.1.24-0+deb9u1) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * New upstream release 1.1.24.
     - Fix CVE-2018-16877:
       A flaw was found in the way pacemaker's client-server authentication was
       implemented. A local attacker could use this flaw, and combine it with
       other IPC weaknesses, to achieve local privilege escalation.
     - Fix CVE-2018-16878:
       A flaw was found in pacemaker. An insufficient verification inflicted
       preference of uncontrolled processes can lead to denial-of-service.
     - Fix CVE-2020-25654:
       An ACL bypass flaw was found in pacemaker. An attacker having a local
       account on the cluster and in the haclient group could use IPC
       communication with various daemons directly to perform certain tasks that
       they would be prevented by ACLs from doing if they went through the
       configuration.
Checksums-Sha1:
 8675eaed13056ac980f7996cc1d4bb1edc36fa10 4129 pacemaker_1.1.24-0+deb9u1.dsc
 5cf76107bc0f68d0330f87e8392d4681d3595197 5765945 pacemaker_1.1.24.orig.tar.gz
 2b0bb3b0406c5398c77dfdc5a7f461333e2c1930 35984 pacemaker_1.1.24-0+deb9u1.debian.tar.xz
 1a53c6c7a0ea6cf39b46e4e57fab60ecd076d017 30289 pacemaker_1.1.24-0+deb9u1_amd64.buildinfo
Checksums-Sha256:
 4c43f815512a995b6d0d64140af66fd3ca9087175a6b5c42e10b0c2dc69eb1de 4129 pacemaker_1.1.24-0+deb9u1.dsc
 0b9ac529b5e6b3846dbb04af605d9a79958fc8cc80e2f4233a8609f64546c6a4 5765945 pacemaker_1.1.24.orig.tar.gz
 987226ed5cc77f3a2cf6f1a663820e91bd9e91856f08d8c88faee89cd119a967 35984 pacemaker_1.1.24-0+deb9u1.debian.tar.xz
 4a16ad6b956f295a4f41990eb66d4b3f1e367f83f5e65275dff0d599f5f6697b 30289 pacemaker_1.1.24-0+deb9u1_amd64.buildinfo
Files:
 3a4ccdda43d42a8fb60ae6c3292dfc61 4129 admin optional pacemaker_1.1.24-0+deb9u1.dsc
 4e0b76f7ba00535514a97dcf9cd47813 5765945 admin optional pacemaker_1.1.24.orig.tar.gz
 f270203c48dde7cf98fbe2ccbab4fa4b 35984 admin optional pacemaker_1.1.24-0+deb9u1.debian.tar.xz
 99ce0a48b2e82f3bf4407e4d415e771a 30289 admin optional pacemaker_1.1.24-0+deb9u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=n7J7
-----END PGP SIGNATURE-----