Описание
Security update for slurm
This update for slurm fixes the following issues:
Security issue fixed:
- CVE-2019-12838: Fixed an SQL injection (bsc#1140709).
Non-security issue fixed:
- Added X11-forwarding (bsc#1153245).
- Moved srun from 'slurm' to 'slurm-node': srun is required on the nodes as well so sbatch will work. 'slurm-node' is a requirement when 'slurm' is installed (bsc#1153095).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
libpmi0-17.11.13-lp150.5.24.1
libslurm32-17.11.13-lp150.5.24.1
perl-slurm-17.11.13-lp150.5.24.1
slurm-17.11.13-lp150.5.24.1
slurm-auth-none-17.11.13-lp150.5.24.1
slurm-config-17.11.13-lp150.5.24.1
slurm-devel-17.11.13-lp150.5.24.1
slurm-doc-17.11.13-lp150.5.24.1
slurm-lua-17.11.13-lp150.5.24.1
slurm-munge-17.11.13-lp150.5.24.1
slurm-node-17.11.13-lp150.5.24.1
slurm-openlava-17.11.13-lp150.5.24.1
slurm-pam_slurm-17.11.13-lp150.5.24.1
slurm-plugins-17.11.13-lp150.5.24.1
slurm-seff-17.11.13-lp150.5.24.1
slurm-sjstat-17.11.13-lp150.5.24.1
slurm-slurmdbd-17.11.13-lp150.5.24.1
slurm-sql-17.11.13-lp150.5.24.1
slurm-sview-17.11.13-lp150.5.24.1
slurm-torque-17.11.13-lp150.5.24.1
Ссылки
- E-Mail link for openSUSE-SU-2019:2536-1
- SUSE Security Ratings
- SUSE Bug 1140709
- SUSE Bug 1153095
- SUSE Bug 1153245
- SUSE CVE CVE-2019-12838 page
Описание
SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection.
Затронутые продукты
openSUSE Leap 15.0:libpmi0-17.11.13-lp150.5.24.1
openSUSE Leap 15.0:libslurm32-17.11.13-lp150.5.24.1
openSUSE Leap 15.0:perl-slurm-17.11.13-lp150.5.24.1
openSUSE Leap 15.0:slurm-17.11.13-lp150.5.24.1
Ссылки
- CVE-2019-12838
- SUSE Bug 1140709