CVE-2011-4925
Published: 13 January 2012
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors.
Notes
Author | Note |
---|---|
sbeattie | munge auth did not get added to torque until 2.5.3 see http://www.clusterresources.com/products/torque/docs/changelog.shtml#253 |
Priority
Status
Package | Release | Status |
---|---|---|
torque Launchpad, Ubuntu, Debian |
hardy |
Not vulnerable
(no munge auth support)
|
lucid |
Not vulnerable
(no munge auth support)
|
|
maverick |
Not vulnerable
(no munge auth support)
|
|
natty |
Not vulnerable
(no munge auth support)
|
|
oneiric |
Not vulnerable
(no munge auth support)
|
|
upstream |
Needs triage
|