{"affected":[{"ecosystem_specific":{"binaries":[{"libnss_slurm2_23_02":"23.02.6-150300.7.14.1","libpmi0_23_02":"23.02.6-150300.7.14.1","libslurm39":"23.02.6-150300.7.14.1","perl-slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02-auth-none":"23.02.6-150300.7.14.1","slurm_23_02-config":"23.02.6-150300.7.14.1","slurm_23_02-config-man":"23.02.6-150300.7.14.1","slurm_23_02-cray":"23.02.6-150300.7.14.1","slurm_23_02-devel":"23.02.6-150300.7.14.1","slurm_23_02-doc":"23.02.6-150300.7.14.1","slurm_23_02-lua":"23.02.6-150300.7.14.1","slurm_23_02-munge":"23.02.6-150300.7.14.1","slurm_23_02-node":"23.02.6-150300.7.14.1","slurm_23_02-pam_slurm":"23.02.6-150300.7.14.1","slurm_23_02-plugin-ext-sensors-rrd":"23.02.6-150300.7.14.1","slurm_23_02-plugins":"23.02.6-150300.7.14.1","slurm_23_02-rest":"23.02.6-150300.7.14.1","slurm_23_02-slurmdbd":"23.02.6-150300.7.14.1","slurm_23_02-sql":"23.02.6-150300.7.14.1","slurm_23_02-sview":"23.02.6-150300.7.14.1","slurm_23_02-torque":"23.02.6-150300.7.14.1","slurm_23_02-webdoc":"23.02.6-150300.7.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 15 SP4","name":"slurm_23_02","purl":"pkg:rpm/suse/slurm_23_02&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"23.02.6-150300.7.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libnss_slurm2_23_02":"23.02.6-150300.7.14.1","libpmi0_23_02":"23.02.6-150300.7.14.1","libslurm39":"23.02.6-150300.7.14.1","perl-slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02-auth-none":"23.02.6-150300.7.14.1","slurm_23_02-config":"23.02.6-150300.7.14.1","slurm_23_02-config-man":"23.02.6-150300.7.14.1","slurm_23_02-cray":"23.02.6-150300.7.14.1","slurm_23_02-devel":"23.02.6-150300.7.14.1","slurm_23_02-doc":"23.02.6-150300.7.14.1","slurm_23_02-lua":"23.02.6-150300.7.14.1","slurm_23_02-munge":"23.02.6-150300.7.14.1","slurm_23_02-node":"23.02.6-150300.7.14.1","slurm_23_02-pam_slurm":"23.02.6-150300.7.14.1","slurm_23_02-plugin-ext-sensors-rrd":"23.02.6-150300.7.14.1","slurm_23_02-plugins":"23.02.6-150300.7.14.1","slurm_23_02-rest":"23.02.6-150300.7.14.1","slurm_23_02-slurmdbd":"23.02.6-150300.7.14.1","slurm_23_02-sql":"23.02.6-150300.7.14.1","slurm_23_02-sview":"23.02.6-150300.7.14.1","slurm_23_02-torque":"23.02.6-150300.7.14.1","slurm_23_02-webdoc":"23.02.6-150300.7.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP3-ESPOS","name":"slurm_23_02","purl":"pkg:rpm/suse/slurm_23_02&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"23.02.6-150300.7.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libnss_slurm2_23_02":"23.02.6-150300.7.14.1","libpmi0_23_02":"23.02.6-150300.7.14.1","libslurm39":"23.02.6-150300.7.14.1","perl-slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02-auth-none":"23.02.6-150300.7.14.1","slurm_23_02-config":"23.02.6-150300.7.14.1","slurm_23_02-config-man":"23.02.6-150300.7.14.1","slurm_23_02-cray":"23.02.6-150300.7.14.1","slurm_23_02-devel":"23.02.6-150300.7.14.1","slurm_23_02-doc":"23.02.6-150300.7.14.1","slurm_23_02-lua":"23.02.6-150300.7.14.1","slurm_23_02-munge":"23.02.6-150300.7.14.1","slurm_23_02-node":"23.02.6-150300.7.14.1","slurm_23_02-pam_slurm":"23.02.6-150300.7.14.1","slurm_23_02-plugin-ext-sensors-rrd":"23.02.6-150300.7.14.1","slurm_23_02-plugins":"23.02.6-150300.7.14.1","slurm_23_02-rest":"23.02.6-150300.7.14.1","slurm_23_02-slurmdbd":"23.02.6-150300.7.14.1","slurm_23_02-sql":"23.02.6-150300.7.14.1","slurm_23_02-sview":"23.02.6-150300.7.14.1","slurm_23_02-torque":"23.02.6-150300.7.14.1","slurm_23_02-webdoc":"23.02.6-150300.7.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSS","name":"slurm_23_02","purl":"pkg:rpm/suse/slurm_23_02&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"23.02.6-150300.7.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libnss_slurm2_23_02":"23.02.6-150300.7.14.1","libpmi0_23_02":"23.02.6-150300.7.14.1","libslurm39":"23.02.6-150300.7.14.1","perl-slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02":"23.02.6-150300.7.14.1","slurm_23_02-auth-none":"23.02.6-150300.7.14.1","slurm_23_02-config":"23.02.6-150300.7.14.1","slurm_23_02-config-man":"23.02.6-150300.7.14.1","slurm_23_02-cray":"23.02.6-150300.7.14.1","slurm_23_02-devel":"23.02.6-150300.7.14.1","slurm_23_02-doc":"23.02.6-150300.7.14.1","slurm_23_02-lua":"23.02.6-150300.7.14.1","slurm_23_02-munge":"23.02.6-150300.7.14.1","slurm_23_02-node":"23.02.6-150300.7.14.1","slurm_23_02-pam_slurm":"23.02.6-150300.7.14.1","slurm_23_02-plugin-ext-sensors-rrd":"23.02.6-150300.7.14.1","slurm_23_02-plugins":"23.02.6-150300.7.14.1","slurm_23_02-rest":"23.02.6-150300.7.14.1","slurm_23_02-slurmdbd":"23.02.6-150300.7.14.1","slurm_23_02-sql":"23.02.6-150300.7.14.1","slurm_23_02-sview":"23.02.6-150300.7.14.1","slurm_23_02-torque":"23.02.6-150300.7.14.1","slurm_23_02-webdoc":"23.02.6-150300.7.14.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"slurm_23_02","purl":"pkg:rpm/opensuse/slurm_23_02&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"23.02.6-150300.7.14.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for slurm_23_02 fixes the following issues:\n\n- CVE-2023-41914: Fixed a filesystem handling race conditions that could have led to an attacker taking control of an arbitrary file, or removing entire directoy contents (bsc#1216207).\n\nBug fixes:\n\n- Add missing dependencies to slurm-config to plugins package. These should help to tie down the slurm version and help to avoid a package mix (bsc#1216869).\n","id":"SUSE-SU-2023:4566-1","modified":"2023-11-24T16:14:14Z","published":"2023-11-24T16:14:14Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234566-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216207"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216869"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-41914"}],"related":["CVE-2023-41914"],"summary":"Security update for slurm_23_02","upstream":["CVE-2023-41914"]}