Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 38: 2023-540de58d84 critical: slurm access control flaw

fedora
Calendar Grey January 3, 2024
Dist Fedora Esm H88
This Fedora update resolves critical access control flaws in slurm for enhanced system security and stability.
- Update to 22.05.11 - Closes CVE-2023-49933 through CVE-2023-49938

Summary

Slurm is an open source, fault-tolerant, and highly scalable

cluster management and job scheduling system for Linux clusters.

Components include machine status, partition management,

job management, scheduling and accounting modules.

Update Information:

- Update to 22.05.11 - Closes CVE-2023-49933 through CVE-2023-49938

Topics%20covered

Topics Covered

security advisory update critical Fedora access control slurm

Change Log

* Fri Dec 22 2023 Neil Hanlon - 22.05.11-1 - Update to 22.05.11 (#2155310) - Closes CVE-2023-49933 through CVE-2023-49938; RHBZ bugs: - #2254496, #2254499, #2254502, #2254505, #2254507, #2254509

References


[ 1 ] Bug #2155310 - slurm-23.11.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2155310 [ 2 ] Bug #2254496 - CVE-2023-49938 slurm: incorrect access control [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254496 [ 3 ] Bug #2254499 - CVE-2023-49937 slurm: double free [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254499 [ 4 ] Bug #2254502 - CVE-2023-49936 slurm: null pointer dereference [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254502 [ 5 ] Bug #2254505 - CVE-2023-49935 slurm: Incorrect Access Control [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254505 [ 6 ] Bug #2254507 - CVE-2023-49934 slurm: SQL injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254507 [ 7 ] Bug #2254509 - CVE-2023-49933 slurm: Improper Enforcement of Message Integrity [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254509

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-540de58d84' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: slurm
Product: Fedora 38
Version: 22.05.11
Release: 2.fc38
URL: https://slurm.schedmd.com/
Summary: Simple Linux Utility for Resource Management

Topics%20covered

Topics Covered

security advisory update critical Fedora access control slurm

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here