Cluster Suite CVE-2007-3373 Information Disclosure Vulnerability

Cluster Suite CVE-2007-3373 Information Disclosure Vulnerability

Cluster Suite is prone to a information disclosure vulnerability. daemon.c in cman (redhat-cluster-suite) before 20070622 does not clear a buffer for reading requests, which might allow local users to obtain sensitive information from previous requests.