Ubuntu 22.04 LTS / 24.04 LTS : Slurm vulnerabilities (USN-8236-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8236-1 advisory. It was discovered that Slurm did not correctly handle certain file system operations. An attacker could possibly use this issue to modify fil...

USN-8236-1 slurm-wlm vulnerabilities

It was discovered that Slurm did not correctly handle certain file system operations. An attacker could possibly use this issue to modify files or leak sensitive information. This issue only affected Ubuntu 22.04 LTS. CVE-2023-41914 Ryan Hall discovered that Slurm did not correctly enforce certai...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Slurm vulnerability (USN-8197-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8197-1 advisory. It was discovered that Slurm did not properly handle access control when dealing with RPC traffic through PMI2 and PMIx, which could allow...

USN-8197-1: Slurm vulnerability

It was discovered that Slurm did not properly handle access control when dealing with RPC traffic through PMI2 and PMIx, which could allow an unprivileged user to send data to an arbitrary unix socket on the host. An attacker could possibly use this issue to execute arbitrary code as the root use...

USN-8197-1 slurm-llnl vulnerability

It was discovered that Slurm did not properly handle access control when dealing with RPC traffic through PMI2 and PMIx, which could allow an unprivileged user to send data to an arbitrary unix socket on the host. An attacker could possibly use this issue to execute arbitrary code as the root use...

CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

UBUNTU-CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

CVE-2025-43904

CVE-2025-43904 affects Slurm’s accounting subsystem before versions 24.11.5, 24.05.8, and 23.11.11. The issue allows a user with Coordinator privileges to promote another user to Administrator, representing an elevation of privilege in the accounting workflow. Documents from multiple vendors/advi...

CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

SchedMD Slurm security vulnerability

SchedMD Slurm is an open-source, highly scalable cluster management and job scheduling system developed by SchedMD in the United States. Versions prior to 24.11.5, 24.05.8, and 23.11.11 of SchedMD Slurm contained security vulnerabilities. These vulnerabilities stemmed from the accounting system...

CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

CVE-2025-43904

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a Coordinator to promote a user to Administrator...

EUVD-2016-1227

Malware in sbrugna...

EUVD-2020-20249

Malware in sbrugna...

EUVD-2021-18128

Malware in sbrugna...

EUVD-2018-3046

Malware in sbrugna...

EUVD-2020-24211

Malware in sbrugna...

EUVD-2019-9330

Malware in sbrugna...

EUVD-2018-18777

Malware in sbrugna...