Security update for pdsh, slurm_18_08 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2020:0434-1 Final 1 1 2020-02-21T16:35:15Z current 2020-02-21T16:35:15Z 2020-02-21T16:35:15Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for pdsh, slurm_18_08 This update for pdsh, slurm_18_08 fixes the following issues: Slurm was included in the 18.08 release, as 'slurm_18_08' package. The version 18.08.9 contains all recent security fixes, including: - CVE-2019-19728: Fixed a privilege escalation with srun, where --uid might have unintended side effects (bsc#1159692). - CVE-2019-19727: Fixed permissions of slurmdbd.conf (bsc#1155784). pdsh was updated to: - Add support for an alternative SLURM version when building the slurm plugin. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2020-434,SUSE-SLE-Module-HPC-12-2020-434 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ Link for SUSE-SU-2020:0434-1 https://lists.suse.com/pipermail/sle-security-updates/2020-February/006511.html E-Mail link for SUSE-SU-2020:0434-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1018371 SUSE Bug 1018371 https://bugzilla.suse.com/1065697 SUSE Bug 1065697 https://bugzilla.suse.com/1085240 SUSE Bug 1085240 https://bugzilla.suse.com/1095508 SUSE Bug 1095508 https://bugzilla.suse.com/1123304 SUSE Bug 1123304 https://bugzilla.suse.com/1140709 SUSE Bug 1140709 https://bugzilla.suse.com/1155784 SUSE Bug 1155784 https://bugzilla.suse.com/1158709 SUSE Bug 1158709 https://bugzilla.suse.com/1158798 SUSE Bug 1158798 https://bugzilla.suse.com/1159692 SUSE Bug 1159692 https://www.suse.com/security/cve/CVE-2016-10030/ SUSE CVE CVE-2016-10030 page https://www.suse.com/security/cve/CVE-2017-15566/ SUSE CVE CVE-2017-15566 page https://www.suse.com/security/cve/CVE-2018-10995/ SUSE CVE CVE-2018-10995 page https://www.suse.com/security/cve/CVE-2018-7033/ SUSE CVE CVE-2018-7033 page https://www.suse.com/security/cve/CVE-2019-12838/ SUSE CVE CVE-2019-12838 page https://www.suse.com/security/cve/CVE-2019-19727/ SUSE CVE CVE-2019-19727 page https://www.suse.com/security/cve/CVE-2019-19728/ SUSE CVE CVE-2019-19728 page https://www.suse.com/security/cve/CVE-2019-6438/ SUSE CVE CVE-2019-6438 page SUSE Linux Enterprise Module for HPC 12 libpmi0_18_08-18.08.9-3.5.1 libslurm33-18.08.9-3.5.1 pdsh-2.33-7.18.1 pdsh-dshgroup-2.33-7.18.1 pdsh-genders-2.33-7.18.1 pdsh-machines-2.33-7.18.1 pdsh-netgroup-2.33-7.18.1 pdsh-slurm-2.33-7.18.1 pdsh-slurm_18_08-2.33-7.18.1 perl-slurm_18_08-18.08.9-3.5.1 slurm_18_08-18.08.9-3.5.1 slurm_18_08-auth-none-18.08.9-3.5.1 slurm_18_08-config-18.08.9-3.5.1 slurm_18_08-config-man-18.08.9-3.5.1 slurm_18_08-cray-18.08.9-3.5.1 slurm_18_08-devel-18.08.9-3.5.1 slurm_18_08-doc-18.08.9-3.5.1 slurm_18_08-lua-18.08.9-3.5.1 slurm_18_08-munge-18.08.9-3.5.1 slurm_18_08-node-18.08.9-3.5.1 slurm_18_08-openlava-18.08.9-3.5.1 slurm_18_08-pam_slurm-18.08.9-3.5.1 slurm_18_08-plugins-18.08.9-3.5.1 slurm_18_08-seff-18.08.9-3.5.1 slurm_18_08-sjstat-18.08.9-3.5.1 slurm_18_08-slurmdbd-18.08.9-3.5.1 slurm_18_08-sql-18.08.9-3.5.1 slurm_18_08-sview-18.08.9-3.5.1 slurm_18_08-torque-18.08.9-3.5.1 slurm_18_08-webdoc-18.08.9-3.5.1 libpmi0_18_08-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 libslurm33-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-dshgroup-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-genders-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-machines-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-netgroup-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-slurm-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 pdsh-slurm_18_08-2.33-7.18.1 as a component of SUSE Linux Enterprise Module for HPC 12 perl-slurm_18_08-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-auth-none-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-config-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-devel-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-doc-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-lua-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-munge-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-node-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-pam_slurm-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-plugins-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-slurmdbd-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-sql-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 slurm_18_08-torque-18.08.9-3.5.1 as a component of SUSE Linux Enterprise Module for HPC 12 The _prolog_error function in slurmd/req.c in Slurm before 15.08.13, 16.x before 16.05.7, and 17.x before 17.02.0-pre4 has a vulnerability in how the slurmd daemon informs users of a Prolog failure on a compute node. That vulnerability could allow a user to assume control of an arbitrary file on the system. Any exploitation of this is dependent on the user being able to cause or anticipate the failure (non-zero return code) of a Prolog script that their job would run on. This issue affects all Slurm versions from 0.6.0 (September 2005) to present. Workarounds to prevent exploitation of this are to either disable your Prolog script, or modify it such that it always returns 0 ("success") and adjust it to set the node as down using scontrol instead of relying on the slurmd to handle that automatically. If you do not have a Prolog set you are unaffected by this issue. CVE-2016-10030 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2016-10030.html CVE-2016-10030 https://bugzilla.suse.com/1018371 SUSE Bug 1018371 Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution. CVE-2017-15566 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2017-15566.html CVE-2017-15566 https://bugzilla.suse.com/1065697 SUSE Bug 1065697 SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles user names (aka user_name fields) and group ids (aka gid fields). CVE-2018-10995 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2018-10995.html CVE-2018-10995 https://bugzilla.suse.com/1095508 SUSE Bug 1095508 SchedMD Slurm before 17.02.10 and 17.11.x before 17.11.5 allows SQL Injection attacks against SlurmDBD. CVE-2018-7033 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2018-7033.html CVE-2018-7033 https://bugzilla.suse.com/1085240 SUSE Bug 1085240 SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection. CVE-2019-12838 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2019-12838.html CVE-2019-12838 https://bugzilla.suse.com/1140709 SUSE Bug 1140709 SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions. CVE-2019-19727 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2019-19727.html CVE-2019-19727 https://bugzilla.suse.com/1155784 SUSE Bug 1155784 SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges. CVE-2019-19728 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 moderate 6 AV:N/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2019-19728.html CVE-2019-19728 https://bugzilla.suse.com/1155784 SUSE Bug 1155784 https://bugzilla.suse.com/1159692 SUSE Bug 1159692 SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems. CVE-2019-6438 SUSE Linux Enterprise Module for HPC 12:libpmi0_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:libslurm33-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:pdsh-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-dshgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-genders-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-machines-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-netgroup-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:pdsh-slurm_18_08-2.33-7.18.1 SUSE Linux Enterprise Module for HPC 12:perl-slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-auth-none-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-config-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-devel-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-doc-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-lua-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-munge-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-node-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-pam_slurm-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-plugins-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-slurmdbd-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-sql-18.08.9-3.5.1 SUSE Linux Enterprise Module for HPC 12:slurm_18_08-torque-18.08.9-3.5.1 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2020/suse-su-20200434-1/ https://www.suse.com/security/cve/CVE-2019-6438.html CVE-2019-6438 https://bugzilla.suse.com/1123304 SUSE Bug 1123304