10 matches found
USN-4781-2 slurm-llnl vulnerabilities
USN-4781-1 fixed several vulnerabilities in Slurm. This update provides the corresponding updates for Ubuntu 14.04 ESM CVE-2016-10030 and Ubuntu 16.04 ESM CVE-2018-10995. Original advisory details: It was discovered that Slurm incorrectly handled certain messages between the daemon and the user. ...
Ubuntu: Security Advisory (USN-4781-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : slurm (SUSE-SU-2017:3311-1)
This update for slurm fixes the following issues: Slurm was updated to 17.02.9 to fix a security bug, bringing new features and bugfixes fate323998 bsc1067580. Security issue fixed : - CVE-2017-15566: Fix security issue in Prolog and Epilog by always prepending SPANK to all user-set environment...
Fedora 27 : slurm (2017-4dad5165dc)
Upstream version 17.02.9 closes privilege escalation issue CVE-2017-15566. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
SUSE-SU-2017:3311-1 Security update for slurm
This update for slurm fixes the following issues: Slurm was updated to 17.02.9 to fix a security bug, bringing new features and bugfixes fate323998 bsc1067580. Security issue fixed: CVE-2017-15566: Fix security issue in Prolog and Epilog by always prepending SPANK to all user-set environment...
Debian DSA-4023-1 : slurm-llnl - security update
Ryan Day discovered that the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system, does not properly handle SPANK environment variables, allowing a user permitted to submit jobs to execute code as root during the Prolog or Epilog. All systems...
[SECURITY] [DSA 4023-1] slurm-llnl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4023-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 07, 2017 https://www.debian.org/security/faq -...
CVE-2017-15566
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...
CVE-2017-15566
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...
CVE-2017-15566
In Slurm, CVE-2017-15566 is caused by insecure handling of SPANK environment variables, enabling local privilege escalation to root during Prolog or Epilog. Affected releases include Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2. The root cause is improper SPANK env va...