{"affected":[{"ecosystem_specific":{"binaries":[{"libnss_slurm2_22_05":"22.05.10-150200.5.6.1","libpmi0_22_05":"22.05.10-150200.5.6.1","libslurm38":"22.05.10-150200.5.6.1","perl-slurm_22_05":"22.05.10-150200.5.6.1","slurm_22_05":"22.05.10-150200.5.6.1","slurm_22_05-auth-none":"22.05.10-150200.5.6.1","slurm_22_05-config":"22.05.10-150200.5.6.1","slurm_22_05-config-man":"22.05.10-150200.5.6.1","slurm_22_05-devel":"22.05.10-150200.5.6.1","slurm_22_05-doc":"22.05.10-150200.5.6.1","slurm_22_05-lua":"22.05.10-150200.5.6.1","slurm_22_05-munge":"22.05.10-150200.5.6.1","slurm_22_05-node":"22.05.10-150200.5.6.1","slurm_22_05-pam_slurm":"22.05.10-150200.5.6.1","slurm_22_05-plugins":"22.05.10-150200.5.6.1","slurm_22_05-rest":"22.05.10-150200.5.6.1","slurm_22_05-slurmdbd":"22.05.10-150200.5.6.1","slurm_22_05-sql":"22.05.10-150200.5.6.1","slurm_22_05-sview":"22.05.10-150200.5.6.1","slurm_22_05-torque":"22.05.10-150200.5.6.1","slurm_22_05-webdoc":"22.05.10-150200.5.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS","name":"slurm_22_05","purl":"pkg:rpm/suse/slurm_22_05&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"22.05.10-150200.5.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for slurm_22_05 fixes the following issues:\n\n- CVE-2023-41914: Fixed a filesystem handling race condition that could have led to an attacker taking control of an arbitrary file, or removing entire directory contents (bsc#1216207).\n\nBug fixes:\n\n- Add missing dependencies to slurm-config to plugins package. These should help to tie down the slurm version and help to avoid a package mix (bsc#1216869).\n- Add missing Provides:, Conflicts: and Obsoletes: to slurm-cray, slurm-hdf5 and slurm-testsuite to avoid package conflicts (bsc#1208810).\n","id":"SUSE-SU-2023:4580-1","modified":"2023-11-27T08:31:18Z","published":"2023-11-27T08:31:18Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234580-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1208810"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216207"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216869"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-41914"}],"related":["CVE-2023-41914"],"summary":"Security update for slurm_22_05","upstream":["CVE-2023-41914"]}