Detections
Analytics

RHEL 7 : pcs (RHSA-2016:2596)

high Nessus Plugin ID 94559

Language:

Synopsis

The remote Red Hat host is missing one or more security updates.

Description

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2016:2596 advisory.

 The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities.

 The following packages have been upgraded to a newer upstream version: pcs (0.9.152). (BZ#1299847)

 Security Fix(es):

 * A Cross-Site Request Forgery (CSRF) flaw was found in the pcsd web UI. A remote attacker could provide a specially crafted web page that, when visited by a user with a valid pcsd session, would allow the attacker to trigger requests on behalf of the user, for example removing resources or restarting/removing nodes. (CVE-2016-0720)

 * It was found that pcsd did not invalidate cookies on the server side when a user logged out. This could potentially allow an attacker to perform session fixation attacks on pcsd. (CVE-2016-0721)

 These issues were discovered by Martin Prpic (Red Hat Product Security).

 Additional Changes:

 For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected pcs package.

See Also

http://www.nessus.org/u?4165441c

http://www.nessus.org/u?8ba8cd6c

https://access.redhat.com/errata/RHSA-2016:2596

https://access.redhat.com/security/updates/classification/#moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1158500

https://bugzilla.redhat.com/show_bug.cgi?id=1158805

https://bugzilla.redhat.com/show_bug.cgi?id=1164402

https://bugzilla.redhat.com/show_bug.cgi?id=1207405

https://bugzilla.redhat.com/show_bug.cgi?id=1219581

https://bugzilla.redhat.com/show_bug.cgi?id=1220512

https://bugzilla.redhat.com/show_bug.cgi?id=1225423

https://bugzilla.redhat.com/show_bug.cgi?id=1225946

https://bugzilla.redhat.com/show_bug.cgi?id=1229822

https://bugzilla.redhat.com/show_bug.cgi?id=1231858

https://bugzilla.redhat.com/show_bug.cgi?id=1248990

https://bugzilla.redhat.com/show_bug.cgi?id=1346852

https://bugzilla.redhat.com/show_bug.cgi?id=1349465

https://bugzilla.redhat.com/show_bug.cgi?id=1354498

https://bugzilla.redhat.com/show_bug.cgi?id=1357945

https://bugzilla.redhat.com/show_bug.cgi?id=1359154

https://bugzilla.redhat.com/show_bug.cgi?id=1366307

https://bugzilla.redhat.com/show_bug.cgi?id=1249085

https://bugzilla.redhat.com/show_bug.cgi?id=1252050

https://bugzilla.redhat.com/show_bug.cgi?id=1264360

https://bugzilla.redhat.com/show_bug.cgi?id=1269242

https://bugzilla.redhat.com/show_bug.cgi?id=1281364

https://bugzilla.redhat.com/show_bug.cgi?id=1281371

https://bugzilla.redhat.com/show_bug.cgi?id=1281391

https://bugzilla.redhat.com/show_bug.cgi?id=1286664

https://bugzilla.redhat.com/show_bug.cgi?id=1287320

https://bugzilla.redhat.com/show_bug.cgi?id=1290512

https://bugzilla.redhat.com/show_bug.cgi?id=1298585

https://bugzilla.redhat.com/show_bug.cgi?id=1299614

https://bugzilla.redhat.com/show_bug.cgi?id=1299615

https://bugzilla.redhat.com/show_bug.cgi?id=1299847

https://bugzilla.redhat.com/show_bug.cgi?id=1301993

https://bugzilla.redhat.com/show_bug.cgi?id=1302010

https://bugzilla.redhat.com/show_bug.cgi?id=1303136

https://bugzilla.redhat.com/show_bug.cgi?id=1305786

https://bugzilla.redhat.com/show_bug.cgi?id=1315357

https://bugzilla.redhat.com/show_bug.cgi?id=1315652

https://bugzilla.redhat.com/show_bug.cgi?id=1315743

https://bugzilla.redhat.com/show_bug.cgi?id=1327739

https://bugzilla.redhat.com/show_bug.cgi?id=1328066

https://bugzilla.redhat.com/show_bug.cgi?id=1329472

https://bugzilla.redhat.com/show_bug.cgi?id=1341114

Plugin Details

Severity: High

ID: 94559

File Name: redhat-RHSA-2016-2596.nasl

Version: 2.13

Type: local

Agent: unix

Published: 11/4/2016

Updated: 4/15/2025

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

Vendor

Vendor Severity: Moderate

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2016-0720

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:pcs, cpe:/o:redhat:enterprise_linux:7

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 11/3/2016

Vulnerability Publication Date: 4/21/2017

Reference Information

CVE: CVE-2016-0720, CVE-2016-0721

CWE: 352, 384

RHSA: 2016:2596