Executive Summary

Informations
NameCVE-2019-3885First vendor Publication2019-04-18
VendorCveLast vendor Modification2019-05-27

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3885

CWE : Common Weakness Enumeration

%idName
100 %CWE-416Use After Free

CPE : Common Platform Enumeration

TypeDescriptionCount
Application6
Os4
Os1

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/108036
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3885
https://github.com/ClusterLabs/pacemaker/pull/1749
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
REDHAT https://access.redhat.com/errata/RHSA-2019:1278
https://access.redhat.com/errata/RHSA-2019:1279
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00034.html
UBUNTU https://usn.ubuntu.com/3952-1/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
DateInformations
2019-05-28 00:19:09
  • Multiple Updates
2019-05-16 05:18:50
  • Multiple Updates
2019-05-05 12:00:58
  • Multiple Updates
2019-05-04 09:19:17
  • Multiple Updates
2019-04-25 00:19:05
  • Multiple Updates
2019-04-24 09:19:11
  • Multiple Updates
2019-04-23 21:19:18
  • Multiple Updates
2019-04-23 17:19:03
  • Multiple Updates
2019-04-22 21:19:19
  • Multiple Updates
2019-04-19 17:19:00
  • Multiple Updates
2019-04-19 00:19:05
  • First insertion