{"affected":[{"ecosystem_specific":{"binaries":[{"libpmi0":"17.11.13-6.18.1","libslurm32":"17.11.13-6.18.1","perl-slurm":"17.11.13-6.18.1","slurm":"17.11.13-6.18.1","slurm-auth-none":"17.11.13-6.18.1","slurm-config":"17.11.13-6.18.1","slurm-devel":"17.11.13-6.18.1","slurm-doc":"17.11.13-6.18.1","slurm-lua":"17.11.13-6.18.1","slurm-munge":"17.11.13-6.18.1","slurm-node":"17.11.13-6.18.1","slurm-pam_slurm":"17.11.13-6.18.1","slurm-plugins":"17.11.13-6.18.1","slurm-slurmdbd":"17.11.13-6.18.1","slurm-sql":"17.11.13-6.18.1","slurm-torque":"17.11.13-6.18.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 15","name":"slurm","purl":"pkg:rpm/suse/slurm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"17.11.13-6.18.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libslurm32":"17.11.13-6.18.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 15 SP1","name":"slurm","purl":"pkg:rpm/suse/slurm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"17.11.13-6.18.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for slurm fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-12838: Fixed an SQL injection (bsc#1140709).\n\nNon-security issue fixed:\n\n- Added X11-forwarding (bsc#1153245).\n- Moved srun from 'slurm' to 'slurm-node': srun is required on the nodes as well so sbatch will work. 'slurm-node' is a requirement when 'slurm' is installed (bsc#1153095). \n","id":"SUSE-SU-2019:2989-1","modified":"2019-11-15T13:10:55Z","published":"2019-11-15T13:10:55Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2019/suse-su-20192989-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1140709"},{"type":"REPORT","url":"https://bugzilla.suse.com/1153095"},{"type":"REPORT","url":"https://bugzilla.suse.com/1153245"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-12838"}],"related":["CVE-2019-12838"],"summary":"Security update for slurm","upstream":["CVE-2019-12838"]}