logo
DATABASE RESOURCES PRICING ABOUT US

SUSE SLES15 / openSUSE 15 Security Update : slurm_20_02 (SUSE-SU-2022:3491-1)

Description

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3491-1 advisory. - SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Information Disclosure. (CVE-2022-29500) - SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution. (CVE-2022-29501) - A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with control over the slurm user to escalate to root. This issue affects: openSUSE Factory slurm versions prior to 22.05.2-3.3. (CVE-2022-31251) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.


Related