Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

Fedora 40: 2025-a4d8b30f59 critical: HTCondor authorization bypass

fedora
Calendar Grey April 6, 2025
Dist Fedora Esm H88
Revise CVE-2025-30093 entries for HTCondor in Fedora 40, addressing significant authentication vulnerabilities.
Address CVE-2025-30093 - rhbz#2355671

Summary

HTCondor is a workload management system for high-throughput and

high-performance jobs. Like other full-featured batch systems, HTCondor

provides a job queuing mechanism, scheduling policy, priority scheme,

resource monitoring, and resource management. Users submit their

serial or parallel jobs to HTCondor, HTCondor places them into a queue,

chooses when and where to run the jobs based upon a policy, carefully

monitors their progress, and ultimately informs the user upon

completion.

Update Information:

Address CVE-2025-30093 - rhbz#2355671

Change Log

* Fri Mar 28 2025 Tim Theisen - 23.9.6-3 - Address CVE-2025-30093 - rhbz#HTCONDOR-2025-0001

References


[ 1 ] Bug #2355671 - CVE-2025-30093 condor: authenticated attackers can potentially bypass authorization restrictions [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2355671

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a4d8b30f59' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: condor
Product: Fedora 40
Version: 23.9.6
Release: 3.fc40
Summary: HTCondor: High Throughput Computing

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here