{"id":"MGASA-2014-0069","summary":"Updated pacemaker package fixes one security issue","details":"A denial of service flaw was found in the way Pacemaker performed\nauthentication and processing of remote connections in certain\ncircumstances. When Pacemaker was configured to allow remote Cluster\nInformation Base (CIB) configuration or resource management, a remote\nattacker could use this flaw to cause Pacemaker to block indefinitely\n(preventing it from serving other requests) (CVE-2013-0281).\n","modified":"2026-04-16T06:24:11.908771859Z","published":"2014-02-14T20:51:01Z","upstream":["CVE-2013-0281"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2014-0069.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=11724"},{"type":"ADVISORY","url":"https://www.redhat.com/security/data/cve/CVE-2013-0281.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=891922#c5"}],"affected":[{"package":{"name":"pacemaker","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/pacemaker?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.8-4.1.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0069.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}