SUSE CVE-2009-1573

xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie MCOOKIE on the command line, which allows local users to gain privileges by listing the process and its arguments...

openSUSE Security Update : slurm_18_08 (openSUSE-2020-2286)

This update for slurm1808 fixes the following issues : Security issues fixed : - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. This update w...

OPENSUSE-SU-2021:0096-1 Security update for slurm_18_08

This update for slurm1808 fixes the following issues: Security issues fixed: - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. This update was...

Security update for slurm_18_08 (important)

openSUSE Security Update: Security update for slurm1808 Announcement ID: openSUSE-SU-2021:0096-1 Rating: important References: 1178890 1178891 Cross-References: CVE-2020-27745 CVE-2020-27746 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available.Descriptio...

SUSE SLES12 Security Update : slurm_20_02 (SUSE-SU-2020:3892-1)

This update for slurm2002 fixes the following issues : Security issues fixed : CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. Non-security issu...

SUSE-SU-2020:3892-1 Security update for slurm_20_02

This update for slurm2002 fixes the following issues: Security issues fixed: - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. Non-security...

SUSE SLES15 Security Update : slurm_17_11 (SUSE-SU-2020:3878-1)

This update for slurm1711 fixes the following issues : CVE-2020-27745: Fixed potential buffer overflows from use of unpackmem bsc1178890. CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. Fixed %posttrans macro resupdate to cope...

OPENSUSE-SU-2020:2286-1 Security update for slurm_18_08

This update for slurm1808 fixes the following issues: Security issues fixed: - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. This update was...

Security update for slurm_18_08 (important)

openSUSE Security Update: Security update for slurm1808 Announcement ID: openSUSE-SU-2020:2286-1 Rating: important References: 1178890 1178891 Cross-References: CVE-2020-27745 CVE-2020-27746 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available.Descriptio...

SUSE-SU-2020:3878-1 Security update for slurm_17_11

This update for slurm1711 fixes the following issues: - CVE-2020-27745: Fixed potential buffer overflows from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. - Fixed %posttrans macro resupdate to...

SUSE-SU-2020:3877-1 Security update for slurm_18_08

This update for slurm1808 fixes the following issues: Security issues fixed: - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891...

SUSE SLES12 Security Update : slurm_18_08 (SUSE-SU-2020:3863-1)

This update for slurm1808 fixes the following issues : Security issues fixed : CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. Note that Tenable...

SUSE-SU-2020:3863-1 Security update for slurm_18_08

This update for slurm1808 fixes the following issues: Security issues fixed: - CVE-2020-27745: Fixed a potential buffer overflow from use of unpackmem bsc1178890. - CVE-2020-27746: Fixed a potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891...

SUSE SLES15 Security Update : slurm (SUSE-SU-2020:3505-1)

This update for slurm fixes the following issues : CVE-2020-27745: PMIx - fix potential buffer overflows from use of unpackmem bsc1178890. CVE-2020-27746: X11 forwarding - fix potential leak of the magic cookie when sent as an argument to the xauth command bsc1178891. Note that Tenable Network...

Security update for slurm (important)

openSUSE Security Update: Security update for slurm Announcement ID: openSUSE-SU-2020:2033-1 Rating: important References: 1178890 1178891 Cross-References: CVE-2020-27745 CVE-2020-27746 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...

SchedMD Slurm Competition Condition Problem Vulnerability

Schedmd SchedMD Slurm is an open source and highly scalable cluster management and job scheduling system for large and small Linux clusters from SchedMD Schedmd, USA. A security vulnerability exists in SchedMD Slurm versions prior to 19.05.8 and versions prior to 20.02.6 of the 20.x series, which...

CVE-2020-24719

Exposed Erlang Cookie could lead to Remote Command Execution RCE attack. Communication between Erlang nodes is done by exchanging a shared secret aka "magic cookie". There are cases where the magic cookie is included in the content of the logs. An attacker can use the cookie to attach to an Erlan...

Command injection

Exposed Erlang Cookie could lead to Remote Command Execution RCE attack. Communication between Erlang nodes is done by exchanging a shared secret aka "magic cookie". There are cases where the magic cookie is included in the content of the logs. An attacker can use the cookie to attach to an Erlan...

CVE-2020-24719

Exposed Erlang Cookie could lead to Remote Command Execution RCE attack. Communication between Erlang nodes is done by exchanging a shared secret aka "magic cookie". There are cases where the magic cookie is included in the content of the logs. An attacker can use the cookie to attach to an Erlan...

GitHub Enterprise 2.8.0 2.8.6 - Remote Code Execution

GitHub Enterprise 2.8.0 2.8.6 - Remote Code Execution !/usr/bin/ruby require "openssl" require "cgi" require "net/http" require "uri" SECRET = "641dd6454584ddabfed6342cc66281fb" puts ' . . ' puts ' \ | | | ' puts '/ \\ / /\ \ | | | | | / \ ' puts '\ / /\ \ / /// \ ' puts ' / / / / / '...