Red Hat Cluster Suite CMan Local Buffer Overflow Vulnerability

Red Hat Cluster Suite CMan Local Buffer Overflow Vulnerability

Red Hat Cluster Suite is prone to an unspecified remote buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to execute arbitrary code with 'cluster manager' privileges. Failed exploit attempts will result in a denial of service.

NOTE: This issue was originally reported in the Ubuntu distribution of the software, but other distributions may also be affected.