Описание
Security update for slurm_22_05
This update for slurm_22_05 fixes the following issues:
- CVE-2023-41914: Fixed a filesystem handling race condition that could have led to an attacker taking control of an arbitrary file, or removing entire directory contents (bsc#1216207).
Bug fixes:
- Add missing dependencies to slurm-config to plugins package. These should help to tie down the slurm version and help to avoid a package mix (bsc#1216869).
- Add missing Provides:, Conflicts: and Obsoletes: to slurm-cray, slurm-hdf5 and slurm-testsuite to avoid package conflicts (bsc#1208810).
Список пакетов
SUSE Linux Enterprise Module for HPC 12
libnss_slurm2_22_05-22.05.10-3.6.1
libpmi0_22_05-22.05.10-3.6.1
libslurm38-22.05.10-3.6.1
perl-slurm_22_05-22.05.10-3.6.1
slurm_22_05-22.05.10-3.6.1
slurm_22_05-auth-none-22.05.10-3.6.1
slurm_22_05-config-22.05.10-3.6.1
slurm_22_05-config-man-22.05.10-3.6.1
slurm_22_05-devel-22.05.10-3.6.1
slurm_22_05-doc-22.05.10-3.6.1
slurm_22_05-lua-22.05.10-3.6.1
slurm_22_05-munge-22.05.10-3.6.1
slurm_22_05-node-22.05.10-3.6.1
slurm_22_05-pam_slurm-22.05.10-3.6.1
slurm_22_05-plugins-22.05.10-3.6.1
slurm_22_05-slurmdbd-22.05.10-3.6.1
slurm_22_05-sql-22.05.10-3.6.1
slurm_22_05-sview-22.05.10-3.6.1
slurm_22_05-torque-22.05.10-3.6.1
slurm_22_05-webdoc-22.05.10-3.6.1
Ссылки
- Link for SUSE-SU-2023:4582-1
- E-Mail link for SUSE-SU-2023:4582-1
- SUSE Security Ratings
- SUSE Bug 1208810
- SUSE Bug 1216207
- SUSE Bug 1216869
- SUSE CVE CVE-2023-41914 page
Описание
SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
Затронутые продукты
SUSE Linux Enterprise Module for HPC 12:libnss_slurm2_22_05-22.05.10-3.6.1
SUSE Linux Enterprise Module for HPC 12:libpmi0_22_05-22.05.10-3.6.1
SUSE Linux Enterprise Module for HPC 12:libslurm38-22.05.10-3.6.1
SUSE Linux Enterprise Module for HPC 12:perl-slurm_22_05-22.05.10-3.6.1
Ссылки
- CVE-2023-41914
- SUSE Bug 1216207