Lucene search
K

8 matches found

securityvulns
securityvulns
added 2014/11/03 12:0 a.m.48 views

[SECURITY] [DSA 3058-1] torque security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3058-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso October 27, 2014 http://www.debian.org/security/faq -...

6.8CVSS0.5AI score0.02838EPSS
Exploits0
NVD
NVD
added 2014/10/30 2:55 p.m.18 views

CVE-2014-3684

The tmadopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the process also owns the adopted session id, which allows remote authenticated users to kill arbitrary...

6.8CVSS6.1AI score0.02838EPSS
Exploits0References10
Prion
Prion
added 2014/10/30 2:55 p.m.16 views

Design/Logic Flaw

The tmadopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the process also owns the adopted session id, which allows remote authenticated users to kill arbitrary...

6.8CVSS6.6AI score0.02838EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2014/10/30 2:0 p.m.33 views

CVE-2014-3684

The tmadopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the process also owns the adopted session id, which allows remote authenticated users to kill arbitrary...

6AI score0.02838EPSS
Exploits0References10
CVE
CVE
added 2014/10/30 2:0 p.m.60 views

CVE-2014-3684

CVE-2014-3684 affects the TORQUE Resource Manager (lib/Libifl/tm.c, tm_adopt) across 5.0.x, 4.5.x, 4.2.x and earlier. The root cause is that the owner of a process is not validated to also own the adopted session id, enabling remote authenticated users to kill arbitrary processes via a crafted ex...

6.8CVSS6.1AI score0.02838EPSS
Exploits0References10Affected Software1
Debian
Debian
added 2014/10/27 8:48 p.m.28 views

[SECURITY] [DLA 78-1] torque security update

Package : torque Version : 2.4.8+dfsg-9squeeze5 CVE ID : CVE-2014-3684 Chad Vizino reported a vulnerability in torque, a PBS-derived batch processing queueing system. A non-root user could exploit the flaw in the tmadopt library call to kill any process, including root-owned ones on any node in a...

6.8CVSS6.1AI score0.02838EPSS
Exploits0
Debian
Debian
added 2014/10/27 3:35 p.m.29 views

[SECURITY] [DSA 3058-1] torque security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3058-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso October 27, 2014 http://www.debian.org/security/faq -...

6.8CVSS0.9AI score0.02838EPSS
Exploits0
OSV
OSV
added 2014/10/27 12:0 a.m.24 views

DSA-3058-1 torque - security update

Bulletin has no description...

6.8CVSS6AI score0.02838EPSS
Exploits0
Rows per page
Query Builder