rpm package
suse/slurm&distro=SUSE Linux Enterprise Module for HPC 15 SP2
pkg:rpm/suse/slurm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP2
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-31215 | — | < 20.02.7-3.6.1 | 20.02.7-3.6.1 | May 13, 2021 | SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling. | ||
| CVE-2020-27746 | — | < 20.02.6-3.3.4 | 20.02.6-3.3.4 | Nov 27, 2020 | Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem. | ||
| CVE-2020-27745 | — | < 20.02.6-3.3.4 | 20.02.6-3.3.4 | Nov 27, 2020 | Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin. |
- CVE-2021-31215May 13, 2021affected < 20.02.7-3.6.1fixed 20.02.7-3.6.1
SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling.
- CVE-2020-27746Nov 27, 2020affected < 20.02.6-3.3.4fixed 20.02.6-3.3.4
Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem.
- CVE-2020-27745Nov 27, 2020affected < 20.02.6-3.3.4fixed 20.02.6-3.3.4
Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin.