CVE-2016-7797
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-7797
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7797.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-7797
- Downstream
- Related
- Published
- 2017-03-24T15:59:00.717Z
- Modified
- 2025-11-20T10:32:04.358970Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.
- References
-
- http://bugs.clusterlabs.org/show_bug.cgi?id=5269
- http://lists.opensuse.org/opensuse-security-announce/2016-11/msg00038.html
- http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2016-12/msg00077.html
- http://rhn.redhat.com/errata/RHSA-2016-2578.html
- http://www.openwall.com/lists/oss-security/2016/10/01/1
- http://www.securityfocus.com/bid/93261
- https://github.com/ClusterLabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410
Affected packages
Git / github.com/clusterlabs/pacemaker
Affected ranges
- Type
- GIT
- Repo
- https://github.com/clusterlabs/pacemaker
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Pacemaker-0.*
Pacemaker-0.6.0
Pacemaker-0.6.1
Pacemaker-0.6.2
Pacemaker-0.6.3
Pacemaker-0.6.4
Pacemaker-0.6.5
Pacemaker-0.6.6
Pacemaker-0.7.0
Pacemaker-0.7.3
Pacemaker-1.*
Pacemaker-1.0.0
Pacemaker-1.0.1
Pacemaker-1.0.2
Pacemaker-1.0.3
Pacemaker-1.0.4
Pacemaker-1.0.5
Pacemaker-1.0.6
Pacemaker-1.0.7
Pacemaker-1.0.8
Pacemaker-1.1.0
Pacemaker-1.1.1
Pacemaker-1.1.10
Pacemaker-1.1.10-rc1
Pacemaker-1.1.10-rc2
Pacemaker-1.1.10-rc3
Pacemaker-1.1.10-rc4
Pacemaker-1.1.10-rc5
Pacemaker-1.1.10-rc6
Pacemaker-1.1.10-rc7
Pacemaker-1.1.11
Pacemaker-1.1.11-rc1
Pacemaker-1.1.11-rc2
Pacemaker-1.1.11-rc3
Pacemaker-1.1.11-rc4
Pacemaker-1.1.11-rc5
Pacemaker-1.1.12
Pacemaker-1.1.12-rc1
Pacemaker-1.1.12-rc2
Pacemaker-1.1.12-rc3
Pacemaker-1.1.12-rc4
Pacemaker-1.1.13
Pacemaker-1.1.13-rc1
Pacemaker-1.1.13-rc2
Pacemaker-1.1.13-rc3
Pacemaker-1.1.14
Pacemaker-1.1.14-rc1
Pacemaker-1.1.14-rc2
Pacemaker-1.1.14-rc3
Pacemaker-1.1.14-rc4
Pacemaker-1.1.14-rc5
Pacemaker-1.1.2
Pacemaker-1.1.2.1
Pacemaker-1.1.3
Pacemaker-1.1.4
Pacemaker-1.1.5
Pacemaker-1.1.6
Pacemaker-1.1.6.1
Pacemaker-1.1.7
Pacemaker-1.1.8
Pacemaker-1.1.9
RHEL6.*
RHEL6.3
RHEL6.4
Other
SLE11-HAE-GMC
pacemaker-1.*
pacemaker-1.1.2-6.el6
Database specific
vanir_signatures
[
{
"target": {
"file": "lrmd/tls_backend.c",
"function": "lrmd_remote_client_msg"
},
"digest": {
"length": 1609.0,
"function_hash": "315783261767323827659458669378243818987"
},
"signature_version": "v1",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"id": "CVE-2016-7797-3dae2c1f",
"deprecated": false,
"signature_type": "Function"
},
{
"target": {
"file": "lrmd/tls_backend.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"439223584576055996361627956758106422",
"330064475927632114013886667913619837160",
"313964137145482634131074596252727078440",
"133173753331894415971014873931248358962",
"108403714500935535187137913528313707067",
"110244816996474075787973323878796398538",
"173480129548176826986082586450568874685",
"46865113153469420821944113091127404782"
]
},
"signature_version": "v1",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"id": "CVE-2016-7797-4882e8db",
"deprecated": false,
"signature_type": "Line"
},
{
"target": {
"file": "lrmd/tls_backend.c",
"function": "lrmd_remote_listen"
},
"digest": {
"length": 1991.0,
"function_hash": "6095392747830266196083641735172720417"
},
"signature_version": "v1",
"source": "https://github.com/clusterlabs/pacemaker/commit/5ec24a2642bd0854b884d1a9b51d12371373b410",
"id": "CVE-2016-7797-bab3ca25",
"deprecated": false,
"signature_type": "Function"
}
]