Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:15.5:Update
slurm.31097
U_19-Add-NEWS-for-CVE-2023-41914.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File U_19-Add-NEWS-for-CVE-2023-41914.patch of Package slurm.31097
From: Tim Wickberg <tim@schedmd.com> Date: Wed Oct 11 12:45:25 2023 -0600 Subject: [PATCH 19/19]Add NEWS for CVE-2023-41914. Patch-mainline: Upstream Git-repo: https://github.com/SchedMD/slurm Git-commit: 59e7eb473329896eec40e6281a36650acafbeebd References: bsc#1216207,CVE-2023-41914 Signed-off-by: Egbert Eich <eich@suse.de> Preceeding commits close a number of race conditions that could let an attacker take control of an arbitrary file, or remove entire directories' contents. --- NEWS | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/NEWS b/NEWS index abe45e4aee..a0bbfdc52e 100644 --- a/NEWS +++ b/NEWS @@ -1,6 +1,12 @@ This file describes changes in recent versions of Slurm. It primarily documents those changes that are of interest to users and administrators. +* Backported changes +==================== + -- Fix filesystem handling race conditions that could lead to an attacker + taking control of an arbitrary file, or removing entire directories' + contents. CVE-2023-41914. + -- CVE-2022-29500 - Prevent credential abuse. -- CVE-2022-29501 - Prevent abuse of REQUEST_FORWARD_DATA.
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor