Lucene search

Fedora: Security Advisory for slurm (FEDORA-2020-e95ef17134)

The remote host is missing an update for the 'slurm' package(s) announced via the FEDORA-2020-e95ef17134 advisory. Slurm is an open source, fault-tolerant, and highly scalable cluster management and job scheduling system for Linux clusters. Please install the updated package(s)

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 47
Tenable Nessus	openSUSE Security Update : slurm_18_08 (openSUSE-2020-1468)	21 Sep 202000:00	–	nessus
Tenable Nessus	Fedora 31 : slurm (2020-11d0cf302f)	4 Jun 202000:00	–	nessus
Tenable Nessus	openSUSE Security Update : slurm_18_08 (openSUSE-2020-1969)	20 Nov 202000:00	–	nessus
Tenable Nessus	openSUSE Security Update : slurm (openSUSE-2020-1421)	14 Sep 202000:00	–	nessus
Tenable Nessus	Fedora 32 : slurm (2020-e95ef17134)	4 Jun 202000:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : slurm_20_02 (SUSE-SU-2020:1554-1)	18 Jun 202000:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : slurm_18_08 (SUSE-SU-2020:2600-1)	11 Sep 202000:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : slurm (SUSE-SU-2020:2598-1)	11 Sep 202000:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : dpdk (SUSE-SU-2020:2194-1)	12 Aug 202000:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : slurm (SUSE-SU-2020:2601-1)	11 Sep 202000:00	–	nessus

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3RGQB3EWDLOLTSPAJPPWZEPQK3O3AUH

# Copyright (C) 2020 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.877941");
  script_version("2021-07-20T02:00:49+0000");
  script_cve_id("CVE-2020-12693");
  script_tag(name:"cvss_base", value:"5.1");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"2021-07-20 02:00:49 +0000 (Tue, 20 Jul 2021)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-01-28 18:09:00 +0000 (Thu, 28 Jan 2021)");
  script_tag(name:"creation_date", value:"2020-06-07 03:28:08 +0000 (Sun, 07 Jun 2020)");
  script_name("Fedora: Security Advisory for slurm (FEDORA-2020-e95ef17134)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC32");

  script_xref(name:"FEDORA", value:"2020-e95ef17134");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3RGQB3EWDLOLTSPAJPPWZEPQK3O3AUH");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'slurm'
  package(s) announced via the FEDORA-2020-e95ef17134 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"Slurm is an open source, fault-tolerant, and highly scalable
cluster management and job scheduling system for Linux clusters.
Components include machine status, partition management,
job management, scheduling and accounting modules.");

  script_tag(name:"affected", value:"'slurm' package(s) on Fedora 32.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "FC32") {

  if(!isnull(res = isrpmvuln(pkg:"slurm", rpm:"slurm~19.05.7~1.fc32", rls:"FC32"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Jun 2020 00:00Current

6.1Medium risk

Vulners AI Score6.1

CVSS25.1

CVSS38.1

EPSS0.00194