Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2014-0408
HistoryOct 09, 2014 - 6:06 p.m.

Updated torque packages fix CVE-2014-3684

2014-10-0918:06:16
Gentoo Foundation
advisories.mageia.org
4

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.005 Low

EPSS

Percentile

76.2%

JSON

Updated torque packages fix security vulnerabilities: Chad Vizino reported that within a TORQUE Resource Manager job a non-root user could use a vulnerability in the tm_adopt() library call to kill processes he/she doesn’t own including root-owned ones on any node in a job (CVE-2014-3684). This update implements the upstream fixes.

OSVersionArchitecturePackageVersionFilename
Mageia3noarchtorque< 4.1.5.1-1.3torque-4.1.5.1-1.3.mga3
Mageia4noarchtorque< 4.1.6-4.1torque-4.1.6-4.1.mga4

Related

nessus 6
osv 2
ubuntucve 1
openvas 7
debian 3
cve 1
securityvulns 2
prion 1
fedora 3
nessus
nessus
Fedora 21 : torque-4.2.10-3.fc21 (2015-8571)
2015-06-02 00:00:00
Mandriva Linux Security Advisory : torque (MDVSA-2015:124)
2015-03-30 00:00:00
Fedora 20 : torque-4.2.10-3.fc20 (2015-8577)
2015-06-02 00:00:00
osv
osv
torque - security update
2014-10-27 00:00:00
torque - security update
2014-10-27 00:00:00
ubuntucve
ubuntucve
CVE-2014-3684
2014-10-30 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0408)
2022-01-28 00:00:00
Debian Security Advisory DSA 3058-1 (torque - security update)
2014-10-27 00:00:00
Debian: Security Advisory (DSA-3058-1)
2014-10-26 00:00:00
debian
debian
[SECURITY] [DSA 3058-1] torque security update
2014-10-27 15:35:46
[SECURITY] [DSA 3058-1] torque security update
2014-10-27 15:35:46
[SECURITY] [DLA 78-1] torque security update
2014-10-27 20:48:40
cve
cve
CVE-2014-3684
2014-10-30 14:55:00
securityvulns
securityvulns
torque privilege escalation
2014-11-03 00:00:00
[SECURITY] [DSA 3058-1] torque security update
2014-11-03 00:00:00
prion
prion
Design/Logic Flaw
2014-10-30 14:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: torque-4.2.10-3.fc20
2015-05-30 15:54:27
[SECURITY] Fedora 21 Update: torque-4.2.10-3.fc21
2015-05-30 15:42:35
[SECURITY] Fedora 22 Update: torque-4.2.10-3.fc22
2015-05-30 15:45:09

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.005 Low

EPSS

Percentile

76.2%

JSON
Related for MGASA-2014-0408
nessus6osv2ubuntucve1openvas7debian3cve1securityvulns2prion1fedora3