CVE-2016-7797
- Source
- https://cve.org/CVERecord?id=CVE-2016-7797
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7797.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-7797
- Downstream
- Related
- Published
- 2017-03-24T15:59:00.717Z
- Modified
- 2026-04-11T05:00:55.274599Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.
- References
-
- http://lists.opensuse.org/opensuse-security-announce/2016-11/msg00038.html
- http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2016-12/msg00077.html
- http://rhn.redhat.com/errata/RHSA-2016-2578.html
- http://www.securityfocus.com/bid/93261
- http://bugs.clusterlabs.org/show_bug.cgi?id=5269
- http://www.openwall.com/lists/oss-security/2016/10/01/1
- https://github.com/ClusterLabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410
Affected packages
Git / github.com/clusterlabs/pacemaker
Affected versions
Pacemaker-0.*
Pacemaker-0.6.0
Pacemaker-0.6.1
Pacemaker-0.6.2
Pacemaker-0.6.3
Pacemaker-0.6.5
Pacemaker-1.*
Pacemaker-1.1.10
Pacemaker-1.1.10-rc1
Pacemaker-1.1.10-rc2
Pacemaker-1.1.10-rc3
Pacemaker-1.1.10-rc4
Pacemaker-1.1.10-rc5
Pacemaker-1.1.10-rc6
Pacemaker-1.1.10-rc7
Pacemaker-1.1.11-rc1
Pacemaker-1.1.11-rc3
Pacemaker-1.1.13-rc1
Pacemaker-1.1.14
Pacemaker-1.1.14-rc1
Pacemaker-1.1.14-rc2
Pacemaker-1.1.14-rc3
Pacemaker-1.1.14-rc4
Pacemaker-1.1.14-rc5
Pacemaker-1.1.6
Pacemaker-1.1.6.1
Pacemaker-1.1.7
Pacemaker-1.1.8
Pacemaker-1.1.9
RHEL6.*
RHEL6.3
RHEL6.4
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "42.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "42.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "12-sp2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "12-sp2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0"
}
]
}
]
vanir_signatures_modified
"2026-04-11T05:00:55Z"
vanir_signatures
[
{
"deprecated": false,
"target": {
"file": "lrmd/tls_backend.c",
"function": "lrmd_remote_client_msg"
},
"id": "CVE-2016-7797-3dae2c1f",
"signature_type": "Function",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"signature_version": "v1",
"digest": {
"function_hash": "315783261767323827659458669378243818987",
"length": 1609.0
}
},
{
"deprecated": false,
"target": {
"file": "lrmd/tls_backend.c"
},
"id": "CVE-2016-7797-4882e8db",
"signature_type": "Line",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"signature_version": "v1",
"digest": {
"line_hashes": [
"439223584576055996361627956758106422",
"330064475927632114013886667913619837160",
"313964137145482634131074596252727078440",
"133173753331894415971014873931248358962",
"108403714500935535187137913528313707067",
"110244816996474075787973323878796398538",
"173480129548176826986082586450568874685",
"46865113153469420821944113091127404782"
],
"threshold": 0.9
}
},
{
"deprecated": false,
"target": {
"file": "lrmd/tls_backend.c",
"function": "lrmd_remote_listen"
},
"id": "CVE-2016-7797-bab3ca25",
"signature_type": "Function",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"signature_version": "v1",
"digest": {
"function_hash": "6095392747830266196083641735172720417",
"length": 1991.0
}
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7797.json"