SUSE-SU-2022:3491-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2022/suse-su-20223491-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:3491-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2022:3491-1
Related
Published
2022-10-03T10:27:49Z
Modified
2022-10-03T10:27:49Z
Summary
Security update for slurm_20_02
Details

This update for slurm2002 fixes the following issues:

  • CVE-2022-31251: Fixed security vulnerability in the test package (bsc#1201674).
  • CVE-2022-29500: Fixed architectural flaw that can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278).
  • CVE-2022-29501: Fixed vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279).

Bugfixes: - Fixed qstat error message (torque wrapper) (bsc#1186646).

References

Affected packages

SUSE:Linux Enterprise High Performance Computing 15 SP1-ESPOS / slurm_20_02

Package

Name
slurm_20_02
Purl
pkg:rpm/suse/slurm_20_02&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20.02.7-150100.3.24.1

Ecosystem specific 

{
    "binaries": [
        {
            "slurm_20_02-webdoc": "20.02.7-150100.3.24.1",
            "slurm_20_02-node": "20.02.7-150100.3.24.1",
            "slurm_20_02-lua": "20.02.7-150100.3.24.1",
            "libslurm35": "20.02.7-150100.3.24.1",
            "slurm_20_02-munge": "20.02.7-150100.3.24.1",
            "slurm_20_02-auth-none": "20.02.7-150100.3.24.1",
            "slurm_20_02-config": "20.02.7-150100.3.24.1",
            "slurm_20_02-config-man": "20.02.7-150100.3.24.1",
            "slurm_20_02-sql": "20.02.7-150100.3.24.1",
            "slurm_20_02-torque": "20.02.7-150100.3.24.1",
            "slurm_20_02-pam_slurm": "20.02.7-150100.3.24.1",
            "slurm_20_02-devel": "20.02.7-150100.3.24.1",
            "perl-slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-doc": "20.02.7-150100.3.24.1",
            "libpmi0_20_02": "20.02.7-150100.3.24.1",
            "libnss_slurm2_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-plugins": "20.02.7-150100.3.24.1",
            "slurm_20_02-slurmdbd": "20.02.7-150100.3.24.1",
            "slurm_20_02-sview": "20.02.7-150100.3.24.1"
        }
    ]
}

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS / slurm_20_02

Package

Name
slurm_20_02
Purl
pkg:rpm/suse/slurm_20_02&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20.02.7-150100.3.24.1

Ecosystem specific 

{
    "binaries": [
        {
            "slurm_20_02-webdoc": "20.02.7-150100.3.24.1",
            "slurm_20_02-node": "20.02.7-150100.3.24.1",
            "slurm_20_02-lua": "20.02.7-150100.3.24.1",
            "libslurm35": "20.02.7-150100.3.24.1",
            "slurm_20_02-munge": "20.02.7-150100.3.24.1",
            "slurm_20_02-auth-none": "20.02.7-150100.3.24.1",
            "slurm_20_02-config": "20.02.7-150100.3.24.1",
            "slurm_20_02-config-man": "20.02.7-150100.3.24.1",
            "slurm_20_02-sql": "20.02.7-150100.3.24.1",
            "slurm_20_02-torque": "20.02.7-150100.3.24.1",
            "slurm_20_02-pam_slurm": "20.02.7-150100.3.24.1",
            "slurm_20_02-devel": "20.02.7-150100.3.24.1",
            "perl-slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-doc": "20.02.7-150100.3.24.1",
            "libpmi0_20_02": "20.02.7-150100.3.24.1",
            "libnss_slurm2_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-plugins": "20.02.7-150100.3.24.1",
            "slurm_20_02-slurmdbd": "20.02.7-150100.3.24.1",
            "slurm_20_02-sview": "20.02.7-150100.3.24.1"
        }
    ]
}

openSUSE:Leap 15.3 / slurm_20_02

Package

Name
slurm_20_02
Purl
pkg:rpm/opensuse/slurm_20_02&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20.02.7-150100.3.24.1

Ecosystem specific 

{
    "binaries": [
        {
            "slurm_20_02-webdoc": "20.02.7-150100.3.24.1",
            "slurm_20_02-node": "20.02.7-150100.3.24.1",
            "slurm_20_02-rest": "20.02.7-150100.3.24.1",
            "slurm_20_02-munge": "20.02.7-150100.3.24.1",
            "slurm_20_02-seff": "20.02.7-150100.3.24.1",
            "slurm_20_02-slurmdbd": "20.02.7-150100.3.24.1",
            "slurm_20_02-auth-none": "20.02.7-150100.3.24.1",
            "slurm_20_02-config": "20.02.7-150100.3.24.1",
            "slurm_20_02-hdf5": "20.02.7-150100.3.24.1",
            "slurm_20_02-config-man": "20.02.7-150100.3.24.1",
            "slurm_20_02-sql": "20.02.7-150100.3.24.1",
            "slurm_20_02-torque": "20.02.7-150100.3.24.1",
            "slurm_20_02-lua": "20.02.7-150100.3.24.1",
            "slurm_20_02-pam_slurm": "20.02.7-150100.3.24.1",
            "slurm_20_02-devel": "20.02.7-150100.3.24.1",
            "slurm_20_02-sjstat": "20.02.7-150100.3.24.1",
            "libnss_slurm2_20_02": "20.02.7-150100.3.24.1",
            "perl-slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-doc": "20.02.7-150100.3.24.1",
            "libpmi0_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-plugins": "20.02.7-150100.3.24.1",
            "slurm_20_02-cray": "20.02.7-150100.3.24.1",
            "slurm_20_02-openlava": "20.02.7-150100.3.24.1",
            "slurm_20_02-sview": "20.02.7-150100.3.24.1"
        }
    ]
}

openSUSE:Leap 15.4 / slurm_20_02

Package

Name
slurm_20_02
Purl
pkg:rpm/opensuse/slurm_20_02&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20.02.7-150100.3.24.1

Ecosystem specific 

{
    "binaries": [
        {
            "slurm_20_02-webdoc": "20.02.7-150100.3.24.1",
            "slurm_20_02-node": "20.02.7-150100.3.24.1",
            "slurm_20_02-rest": "20.02.7-150100.3.24.1",
            "slurm_20_02-munge": "20.02.7-150100.3.24.1",
            "slurm_20_02-seff": "20.02.7-150100.3.24.1",
            "slurm_20_02-slurmdbd": "20.02.7-150100.3.24.1",
            "slurm_20_02-auth-none": "20.02.7-150100.3.24.1",
            "slurm_20_02-config": "20.02.7-150100.3.24.1",
            "slurm_20_02-hdf5": "20.02.7-150100.3.24.1",
            "slurm_20_02-config-man": "20.02.7-150100.3.24.1",
            "slurm_20_02-sql": "20.02.7-150100.3.24.1",
            "slurm_20_02-torque": "20.02.7-150100.3.24.1",
            "slurm_20_02-lua": "20.02.7-150100.3.24.1",
            "slurm_20_02-pam_slurm": "20.02.7-150100.3.24.1",
            "slurm_20_02-devel": "20.02.7-150100.3.24.1",
            "slurm_20_02-sjstat": "20.02.7-150100.3.24.1",
            "libnss_slurm2_20_02": "20.02.7-150100.3.24.1",
            "perl-slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-doc": "20.02.7-150100.3.24.1",
            "libpmi0_20_02": "20.02.7-150100.3.24.1",
            "slurm_20_02-plugins": "20.02.7-150100.3.24.1",
            "slurm_20_02-cray": "20.02.7-150100.3.24.1",
            "slurm_20_02-openlava": "20.02.7-150100.3.24.1",
            "slurm_20_02-sview": "20.02.7-150100.3.24.1"
        }
    ]
}