CVE-2009-2084
Published: 16 June 2009
Simple Linux Utility for Resource Management (SLURM) 1.2 and 1.3 before 1.3.14 does not properly set supplementary groups before invoking (1) sbcast from the slurmd daemon or (2) strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges.
Priority
Status
Package | Release | Status |
---|---|---|
slurm-llnl Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Released
(1.3.6-1lenny3build0.8.10.1)
|
|
jaunty |
Ignored
(end of life)
|
|
karmic |
Not vulnerable
(1.3.15-1)
|
|
lucid |
Not vulnerable
(1.3.15-1)
|
|
maverick |
Not vulnerable
(1.3.15-1)
|
|
natty |
Not vulnerable
(1.3.15-1)
|
|
oneiric |
Not vulnerable
(1.3.15-1)
|
|
upstream |
Released
(1.3.14)
|