Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 13 results


CVE-2024-48936

Medium priority
Needs evaluation

SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in stepmgr could permit an attacker to execute processes under other users' jobs. This is limited to jobs explicitly running with...

1 affected packages

slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-wlm Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2023-49938

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49937

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49936

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49935

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49934

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-49933

Medium priority
Needs evaluation

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows attackers to modify RPC traffic in a way that...

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Ignored Ignored
Show less packages

CVE-2023-41914

Medium priority
Needs evaluation

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
slurm-wlm Needs evaluation Needs evaluation Not in release Not in release Not in release
Show less packages

CVE-2022-29502

Medium priority

Some fixes available 1 of 4

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Not affected Not affected Needs evaluation
slurm-wlm Not affected Fixed Not in release Not in release
Show less packages

CVE-2022-29501

High priority

Some fixes available 2 of 7

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.

2 affected packages

slurm-llnl, slurm-wlm

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
slurm-llnl Not in release Not in release Fixed Vulnerable Vulnerable
slurm-wlm Not affected Fixed Not in release Not in release
Show less packages