Lucene search
K

10 matches found

OSV
OSV
added 2023/02/01 9:22 a.m.15 views

USN-4781-2 slurm-llnl vulnerabilities

USN-4781-1 fixed several vulnerabilities in Slurm. This update provides the corresponding updates for Ubuntu 14.04 ESM CVE-2016-10030 and Ubuntu 16.04 ESM CVE-2018-10995. Original advisory details: It was discovered that Slurm incorrectly handled certain messages between the daemon and the user. ...

8.1CVSS7.1AI score0.02483EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-4781-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.02902EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.26 views

SUSE SLES12 Security Update : slurm (SUSE-SU-2017:3311-1)

This update for slurm fixes the following issues: Slurm was updated to 17.02.9 to fix a security bug, bringing new features and bugfixes fate323998 bsc1067580. Security issue fixed : - CVE-2017-15566: Fix security issue in Prolog and Epilog by always prepending SPANK to all user-set environment...

7.8CVSS7.5AI score0.00578EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.24 views

Fedora 27 : slurm (2017-4dad5165dc)

Upstream version 17.02.9 closes privilege escalation issue CVE-2017-15566. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

7.8CVSS7.4AI score0.00578EPSS
Exploits0References3
OSV
OSV
added 2017/12/14 2:51 p.m.5 views

SUSE-SU-2017:3311-1 Security update for slurm

This update for slurm fixes the following issues: Slurm was updated to 17.02.9 to fix a security bug, bringing new features and bugfixes fate323998 bsc1067580. Security issue fixed: CVE-2017-15566: Fix security issue in Prolog and Epilog by always prepending SPANK to all user-set environment...

7.8CVSS8.8AI score0.00578EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2017/11/08 12:0 a.m.28 views

Debian DSA-4023-1 : slurm-llnl - security update

Ryan Day discovered that the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system, does not properly handle SPANK environment variables, allowing a user permitted to submit jobs to execute code as root during the Prolog or Epilog. All systems...

7.8CVSS7.7AI score0.00578EPSS
Exploits0References4
Debian
Debian
added 2017/11/07 10:22 p.m.28 views

[SECURITY] [DSA 4023-1] slurm-llnl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4023-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 07, 2017 https://www.debian.org/security/faq -...

7.2CVSS1.5AI score0.00578EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/11/01 5:29 p.m.29 views

CVE-2017-15566

Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...

7.8CVSS7.1AI score0.00578EPSS
Exploits0References4
OSV
OSV
added 2017/11/01 5:29 p.m.22 views

CVE-2017-15566

Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...

7.8CVSS7.9AI score
Exploits0References3
CVE
CVE
added 2017/11/01 5:0 p.m.78 views

CVE-2017-15566

In Slurm, CVE-2017-15566 is caused by insecure handling of SPANK environment variables, enabling local privilege escalation to root during Prolog or Epilog. Affected releases include Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2. The root cause is improper SPANK env va...

7.8CVSS7.8AI score0.00578EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder