A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an invalid HMAC to be accepted by the Booth server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
clusterlabs booth |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux eus 8.4 |
||
redhat enterprise linux server update services for sap solutions 8.4 |
||
redhat enterprise linux 9.0 |
||
redhat enterprise linux eus 8.8 |
||
redhat enterprise linux eus 9.2 |
||
redhat enterprise linux for power little endian eus 9.2 ppc64le |
||
redhat enterprise linux for power little endian eus 8.8 ppc64le |
||
redhat enterprise linux for ibm z systems eus 8.8 s390x |
||
redhat enterprise linux for ibm z systems 8.0 s390x |
||
redhat enterprise linux for arm 64 8.0 aarch64 |
||
redhat enterprise linux for ibm z systems 9.2 s390x |
||
redhat enterprise linux for arm 64 8.8 aarch64 |
||
redhat enterprise linux for arm 64 9.4 aarch64 |
||
redhat enterprise linux for power little endian eus 9.4 ppc64le |
||
redhat enterprise linux for ibm z systems 9.4 s390x |
||
redhat enterprise linux for arm 64 9.2 aarch64 |
||
redhat enterprise linux for power little endian eus 8.0 ppc64le |
||
redhat enterprise linux for power little endian eus 8.4 ppc64le |