Fedora 33: Update FEDORA-2020-49b97c38e7 Critical: slurm Buffer Overflows

Slurm is an open source, fault-tolerant, and highly scalable

cluster management and job scheduling system for Linux clusters.

Components include machine status, partition management,

job management, scheduling and accounting modules.

Update to 20.02.6. Closes security issues CVE-2020-27745 and CVE-2020-27746.

* Tue Nov 17 2020 Philip Kovacs - 20.02.6-1

- Release of 20.02.6

- Closes security issues CVE-2020-27745 and CVE-2020-27746

[ 1 ] Bug #1898122 - CVE-2020-27745 slurm: potential buffer overflows from use of unpackmem() [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1898122

[ 2 ] Bug #1898128 - CVE-2020-27746 slurm: CVE-2020-27746: slurm: potential leak of the magic cookie when sent as an argument to the xauth command [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1898128

su -c 'dnf upgrade --advisory FEDORA-2020-49b97c38e7' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/