File _patchinfo of Package patchinfo.25997

<patchinfo incident="25997">
  <issue tracker="bnc" id="1201674">VUL-0: CVE-2022-31251: slurm: %post for slurm-testsuite operates as root in user owned directory</issue>
  <issue tracker="bnc" id="1199279">VUL-0: CVE-2022-29501: slurm_20_02,slurmlibs,slurm_20_11,slurm,slurm_18_08: Unprivileged user can send data to arbitrary unix socket as root</issue>
  <issue tracker="bnc" id="1199278">VUL-0: CVE-2022-29500: slurm_20_02,slurm_18_08,slurm_20_11,slurm,slurmlibs: architectural flaw can be exploited to allow an unprivileged user to execute arbitrary processes as root</issue>
  <issue tracker="cve" id="2022-29501"/>
  <issue tracker="cve" id="2022-29500"/>
  <issue tracker="cve" id="2022-31251"/>
  <packager>eeich</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for slurm_18_08</summary>
  <description>This update for slurm_18_08 fixes the following issues:

- CVE-2022-31251: Fixed a potential security vulnerability in the test package (bsc#1201674).
- CVE-2022-29500: Fixed an architectural flaw can be exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278).
- CVE-2022-29501: Fixed a vulnerability where an unprivileged user can send data to arbitrary unix socket as root (bsc#1199279).
</description>
</patchinfo>