Overview

File _patchinfo of Package patchinfo.17254

<patchinfo incident="17254">
  <issue tracker="cve" id="2020-27745"/>
  <issue tracker="cve" id="2020-27746"/>
  <issue tracker="bnc" id="1178891">VUL-0: CVE-2020-27746: slurm,slurm_18_08,slurm_20_02,slurmlibs: potential leak of the magic cookie when sent as an argument to the xauth command</issue>
  <issue tracker="bnc" id="1178890">VUL-0: CVE-2020-27745: slurm,slurmlibs,slurm_18_08,slurm_20_02: potential buffer overflows from use of unpackmem()</issue>
  <issue tracker="bnc" id="1173805">[HPC,SLURM,PMIx] Althought requested in jsc#SLE-11200 Support for it in SLURM is still missing</issue>
  <packager>anag</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for slurm</summary>
  <description>This update for slurm fixes the following issues:

- Updated to 20.02.6:
  * CVE-2020-27745: PMIx - fix potential buffer overflows from use of unpackmem() (bsc#1178890).
  * CVE-2020-27746: X11 forwarding - fix potential leak of the magic cookie when 
    sent as an argument to the xauth command (bsc#1178891).
  * Added support for openPMIx (bsc#1173805).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places