Unrated severityNVD Advisory· Published Oct 11, 2013· Updated Apr 29, 2026

CVE-2009-5136

Description

The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service (condor_startd exit) via a crafted job.

Affected products

Condor Project/Condor2 versions
cpe:2.3:a:condor_project:condor:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:condor_project:condor:*:*:*:*:*:*:*:*range: <=7.4.1
- cpe:2.3:a:condor_project:condor:7.4.0:*:*:*:*:*:*:*
Red Hat/Enterprise Mrg8 versions
cpe:2.3:o:redhat:enterprise_mrg:1.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:o:redhat:enterprise_mrg:1.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.2.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000