CVE-2019-3885

Опубликовано: 17 апр. 2019

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.

A use-after-free flaw was found in pacemaker which could result in certain sensitive information to be leaked via the system logs.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	pacemaker	Will not fix
Red Hat Storage 3	pacemaker	Will not fix
Red Hat Enterprise Linux 7	pacemaker	Fixed	RHSA-2019:1278	27.05.2019
Red Hat Enterprise Linux 8	pacemaker	Fixed	RHSA-2019:1279	27.05.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=1694554pacemaker: Information disclosure through use-after-free

EPSS

Процентиль: 53%

0.00297

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2019-3885

CVSS3: 3.3

ubuntu

почти 7 лет назад

A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.

CVE-2019-3885

CVSS3: 3.3

nvd

почти 7 лет назад

A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.

CVE-2019-3885

CVSS3: 3.3

debian

почти 7 лет назад

A use-after-free flaw was found in pacemaker up to and including versi ...

GHSA-65pr-6j4p-wvp6

CVSS3: 7.5

github

больше 3 лет назад

A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.

openSUSE-SU-2019:1400-1

suse-cvrf

больше 6 лет назад

Security update for pacemaker

EPSS

Процентиль: 53%

0.00297

Низкий

3.3 Low

CVSS3