Security update for slurm
This update for slurm fixes the following issues:
- Fix Authentication Bypass when Message Aggregation is enabled CVE-2020-12693
This fixes and issue where authentication could be bypassed via an alternate
path or channel when message Aggregation was enabled.
A race condition allowed a user to launch a process as an arbitrary user.
Add: Fix-Authentication-Bypass-when-Message-Aggregation-is-enabled-CVE-2020-12693.patch
(CVE-2020-12693, bsc#1172004).
- Remove unneeded build dependency to postgresql-devel.
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Egbert Eich (eeich)
Fixed bugs
bnc#1172004
VUL-0: CVE-2020-12693: slurm: Authentication Bypass via an Alternate Path or Channel when Message Aggregation is enabled
