{
  "threat_severity" : "Moderate",
  "public_date" : "2019-04-17T04:30:00Z",
  "bugzilla" : {
    "description" : "pacemaker: Insufficient verification inflicted preference of uncontrolled processes can lead to DoS",
    "id" : "1657962",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1657962"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.2",
    "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-400",
  "details" : [ "A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS", "A flaw was found in pacemaker. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS." ],
  "acknowledgement" : "This issue was discovered by Jan Pokorný (Red Hat).",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2019-05-27T00:00:00Z",
    "advisory" : "RHSA-2019:1278",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "pacemaker-0:1.1.19-8.el7_6.5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2019-05-27T00:00:00Z",
    "advisory" : "RHSA-2019:1279",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "pacemaker-0:2.0.1-4.el8_0.3"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Will not fix",
    "package_name" : "pacemaker",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Storage 3",
    "fix_state" : "Will not fix",
    "package_name" : "pacemaker",
    "cpe" : "cpe:/a:redhat:storage:3"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-16878\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-16878" ],
  "name" : "CVE-2018-16878",
  "csaw" : false
}