Search CVE reports


Toggle filters

1 – 10 of 25 results


CVE-2023-49938

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49937

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49936

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49935

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49934

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49933

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows attackers to modify RPC traffic in a way that...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-41914

Medium priority
Needs evaluation

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Not in release Not in release
Show less packages

CVE-2022-29502

Medium priority

Some fixes available 1 of 4

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Not affected Not affected Needs evaluation
slurm-wlm Not affected Fixed Not in release Not in release
Show less packages

CVE-2022-29501

High priority

Some fixes available 2 of 7

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Fixed Vulnerable Vulnerable
slurm-wlm Not affected Fixed Not in release Not in release
Show less packages

CVE-2022-29500

High priority

Some fixes available 2 of 7

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Information Disclosure.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Fixed Ignored Ignored
slurm-wlm Not affected Fixed Not in release Not in release
Show less packages