SUSE update for slurm_20_11 and pdsh

Published: 2021-03-12

Risk	High
Patch available	YES
Number of vulnerabilities	11
CVE-ID	CVE-2016-10030 CVE-2017-15566 CVE-2018-10995 CVE-2018-7033 CVE-2019-12838 CVE-2019-19727 CVE-2019-19728 CVE-2019-6438 CVE-2020-12693 CVE-2020-27745 CVE-2020-27746
CWE-ID	CWE-284 CWE-426 CWE-264 CWE-89 CWE-732 CWE-269 CWE-122 CWE-288 CWE-119 CWE-362
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	SUSE Linux Enterprise Module for HPC Operating systems & Components / Operating system slurm_20_11-webdoc Operating systems & Components / Operating system package or component slurm_20_11-torque-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-torque Operating systems & Components / Operating system package or component slurm_20_11-sview-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-sview Operating systems & Components / Operating system package or component slurm_20_11-sql-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-sql Operating systems & Components / Operating system package or component slurm_20_11-slurmdbd-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-slurmdbd Operating systems & Components / Operating system package or component slurm_20_11-plugins-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-plugins Operating systems & Components / Operating system package or component slurm_20_11-pam_slurm-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-pam_slurm Operating systems & Components / Operating system package or component slurm_20_11-node-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-node Operating systems & Components / Operating system package or component slurm_20_11-munge-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-munge Operating systems & Components / Operating system package or component slurm_20_11-lua-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-lua Operating systems & Components / Operating system package or component slurm_20_11-doc Operating systems & Components / Operating system package or component slurm_20_11-devel Operating systems & Components / Operating system package or component slurm_20_11-debugsource Operating systems & Components / Operating system package or component slurm_20_11-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-config-man Operating systems & Components / Operating system package or component slurm_20_11-config Operating systems & Components / Operating system package or component slurm_20_11-auth-none-debuginfo Operating systems & Components / Operating system package or component slurm_20_11-auth-none Operating systems & Components / Operating system package or component slurm_20_11 Operating systems & Components / Operating system package or component perl-slurm_20_11-debuginfo Operating systems & Components / Operating system package or component perl-slurm_20_11 Operating systems & Components / Operating system package or component pdsh_slurm_20_11-debugsource Operating systems & Components / Operating system package or component pdsh_slurm_20_02-debugsource Operating systems & Components / Operating system package or component pdsh_slurm_18_08-debugsource Operating systems & Components / Operating system package or component pdsh-slurm_20_11-debuginfo Operating systems & Components / Operating system package or component pdsh-slurm_20_11 Operating systems & Components / Operating system package or component pdsh-slurm_20_02-debuginfo Operating systems & Components / Operating system package or component pdsh-slurm_20_02 Operating systems & Components / Operating system package or component pdsh-slurm_18_08-debuginfo Operating systems & Components / Operating system package or component pdsh-slurm_18_08 Operating systems & Components / Operating system package or component pdsh-slurm-debuginfo Operating systems & Components / Operating system package or component pdsh-slurm Operating systems & Components / Operating system package or component pdsh-netgroup-debuginfo Operating systems & Components / Operating system package or component pdsh-netgroup Operating systems & Components / Operating system package or component pdsh-machines-debuginfo Operating systems & Components / Operating system package or component pdsh-machines Operating systems & Components / Operating system package or component pdsh-genders-debuginfo Operating systems & Components / Operating system package or component pdsh-genders Operating systems & Components / Operating system package or component pdsh-dshgroup-debuginfo Operating systems & Components / Operating system package or component pdsh-dshgroup Operating systems & Components / Operating system package or component pdsh-debugsource Operating systems & Components / Operating system package or component pdsh-debuginfo Operating systems & Components / Operating system package or component pdsh Operating systems & Components / Operating system package or component libslurm36-debuginfo Operating systems & Components / Operating system package or component libslurm36 Operating systems & Components / Operating system package or component libpmi0_20_11-debuginfo Operating systems & Components / Operating system package or component libpmi0_20_11 Operating systems & Components / Operating system package or component libnss_slurm2_20_11-debuginfo Operating systems & Components / Operating system package or component libnss_slurm2_20_11 Operating systems & Components / Operating system package or component
Vendor	SUSE

Security Bulletin

This security bulletin contains information about 11 vulnerabilities.

1) Improper access control

EUVDB-ID: #VU39953

Risk: High

CVSSv4.0: 7.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2016-10030

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The _prolog_error function in slurmd/req.c in Slurm before 15.08.13, 16.x before 16.05.7, and 17.x before 17.02.0-pre4 has a vulnerability in how the slurmd daemon informs users of a Prolog failure on a compute node. That vulnerability could allow a user to assume control of an arbitrary file on the system. Any exploitation of this is dependent on the user being able to cause or anticipate the failure (non-zero return code) of a Prolog script that their job would run on. This issue affects all Slurm versions from 0.6.0 (September 2005) to present. Workarounds to prevent exploitation of this are to either disable your Prolog script, or modify it such that it always returns 0 ("success") and adjust it to set the node as down using scontrol instead of relying on the slurmd to handle that automatically. If you do not have a Prolog set you are unaffected by this issue.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Untrusted search path

EUVDB-ID: #VU37992

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-15566

CWE-ID: CWE-426 - Untrusted Search Path

Exploit availability: No

Description

The vulnerability allows a local authenticated user to execute arbitrary code.

Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Security restrictions bypass

EUVDB-ID: #VU13897

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-10995

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The vulnerability exists due to the application mishandles user names (aka user_name fields) and group ids (aka gid fields). A remote unauthenticated attacker can bypass security restrictions and conduct further attacks.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) SQL injection

EUVDB-ID: #VU13996

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-7033

CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary SQL commands in web application database.

The vulnerability exists due to insufficient sanitization of user-supplied data. A remote attacker can send a specially crafted HTTP request to vulnerable script and execute arbitrary SQL commands in web application database.

Successful exploitation of the vulnerability may allow an attacker to gain administrative access to vulnerable web application.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) SQL injection

EUVDB-ID: #VU20853

Risk: Medium

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-12838

CWE-ID: CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Exploit availability: No

Description

The vulnerability allows a remote authenticated user to execute arbitrary SQL queries in database.

The vulnerability exists due to insufficient sanitization of user-supplied data within the sacctmgr archive load functionality. A remote authenticated user can send a specially crafted request to the affected application and execute arbitrary SQL commands within the application database.

Successful exploitation of this vulnerability may allow a remote attacker to read, delete, modify data in database and gain complete control over the affected application.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Incorrect permission assignment for critical resource

EUVDB-ID: #VU50144

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-19727

CWE-ID: CWE-732 - Incorrect Permission Assignment for Critical Resource

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to application sets insecure permissions to the slurmdbd.conf file. A local user can read the file and gain access to sensitive information.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Improper Privilege Management

EUVDB-ID: #VU50141

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-19728

CWE-ID: CWE-269 - Improper Privilege Management

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to Slurm executes srun --uid with incorrect privileges. A local user can escalate privileges on the system.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Heap-based buffer overflow

EUVDB-ID: #VU20855

Risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-6438

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform denial of service (DoS) attack.

The vulnerability exists due to a boundary error. A remote attacker can send specially crafted data to the affected application, trigger heap overflow and perform denial of service attack.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Authentication bypass using an alternate path or channel

EUVDB-ID: #VU46672

Risk: High

CVSSv4.0: 7.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2020-12693

CWE-ID: CWE-288 - Authentication Bypass Using an Alternate Path or Channel

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to a race condition during authentication process, if Message Aggregation is enabled. A remote non-authenticated attacker can send specially crafted request to the application, bypass authentication process and execute arbitrary code on the system.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Buffer overflow

EUVDB-ID: #VU50143

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2020-27745

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the PMIx MPI plugin. A local user can run a specially crafted program to trigger buffer overflow in RPC implementation and execute arbitrary code on the system with elevated privileges.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Race condition

EUVDB-ID: #VU50142

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2020-27746

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a race condition in the xauth for X11 magic cookies when reading data on the /proc filesystem. A local user can exploit the race and gain unauthorized access to sensitive information.

Mitigation

Update the affected package slurm_20_11 and pdsh to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for HPC: 12

slurm_20_11-webdoc: before 20.11.4-3.5.1

slurm_20_11-torque-debuginfo: before 20.11.4-3.5.1

slurm_20_11-torque: before 20.11.4-3.5.1

slurm_20_11-sview-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sview: before 20.11.4-3.5.1

slurm_20_11-sql-debuginfo: before 20.11.4-3.5.1

slurm_20_11-sql: before 20.11.4-3.5.1

slurm_20_11-slurmdbd-debuginfo: before 20.11.4-3.5.1

slurm_20_11-slurmdbd: before 20.11.4-3.5.1

slurm_20_11-plugins-debuginfo: before 20.11.4-3.5.1

slurm_20_11-plugins: before 20.11.4-3.5.1

slurm_20_11-pam_slurm-debuginfo: before 20.11.4-3.5.1

slurm_20_11-pam_slurm: before 20.11.4-3.5.1

slurm_20_11-node-debuginfo: before 20.11.4-3.5.1

slurm_20_11-node: before 20.11.4-3.5.1

slurm_20_11-munge-debuginfo: before 20.11.4-3.5.1

slurm_20_11-munge: before 20.11.4-3.5.1

slurm_20_11-lua-debuginfo: before 20.11.4-3.5.1

slurm_20_11-lua: before 20.11.4-3.5.1

slurm_20_11-doc: before 20.11.4-3.5.1

slurm_20_11-devel: before 20.11.4-3.5.1

slurm_20_11-debugsource: before 20.11.4-3.5.1

slurm_20_11-debuginfo: before 20.11.4-3.5.1

slurm_20_11-config-man: before 20.11.4-3.5.1

slurm_20_11-config: before 20.11.4-3.5.1

slurm_20_11-auth-none-debuginfo: before 20.11.4-3.5.1

slurm_20_11-auth-none: before 20.11.4-3.5.1

slurm_20_11: before 20.11.4-3.5.1

perl-slurm_20_11-debuginfo: before 20.11.4-3.5.1

perl-slurm_20_11: before 20.11.4-3.5.1

pdsh_slurm_20_11-debugsource: before 2.34-7.32.1

pdsh_slurm_20_02-debugsource: before 2.34-7.32.1

pdsh_slurm_18_08-debugsource: before 2.34-7.32.1

pdsh-slurm_20_11-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_11: before 2.34-7.32.1

pdsh-slurm_20_02-debuginfo: before 2.34-7.32.1

pdsh-slurm_20_02: before 2.34-7.32.1

pdsh-slurm_18_08-debuginfo: before 2.34-7.32.1

pdsh-slurm_18_08: before 2.34-7.32.1

pdsh-slurm-debuginfo: before 2.34-7.32.1

pdsh-slurm: before 2.34-7.32.1

pdsh-netgroup-debuginfo: before 2.34-7.32.1

pdsh-netgroup: before 2.34-7.32.1

pdsh-machines-debuginfo: before 2.34-7.32.1

pdsh-machines: before 2.34-7.32.1

pdsh-genders-debuginfo: before 2.34-7.32.1

pdsh-genders: before 2.34-7.32.1

pdsh-dshgroup-debuginfo: before 2.34-7.32.1

pdsh-dshgroup: before 2.34-7.32.1

pdsh-debugsource: before 2.34-7.32.1

pdsh-debuginfo: before 2.34-7.32.1

pdsh: before 2.34-7.32.1

libslurm36-debuginfo: before 20.11.4-3.5.1

libslurm36: before 20.11.4-3.5.1

libpmi0_20_11-debuginfo: before 20.11.4-3.5.1

libpmi0_20_11: before 20.11.4-3.5.1

libnss_slurm2_20_11-debuginfo: before 20.11.4-3.5.1

libnss_slurm2_20_11: before 20.11.4-3.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2021/suse-su-20210773-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.