John Fitzpatrick

**Name of the Vulnerable Software and Affected Versions** BeeGFS versions prior to 7.1.4 **Description** The issue allows authentication bypass via communication with a BeeGFS metadata server. This server is typically not exposed to external networks. **Recommendations** For versions prior to 7.1.4, update to version 7.1.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** IBM Platform LSF version 10.1 **Description** The issue allows a local user to escalate their privileges and obtain root access. **Recommendations** For IBM Platform LSF version 10.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** IBM General Parallel File System (GPFS) versions 2.0.0 through 2.0.7 IBM General Parallel File System (GPFS) versions 2.5.x through 2.5.5 IBM General Parallel File System (GPFS) versions 3.x before 3.5.5 IBM General Parallel File System (GPFS) versions 4.x before 4.0.3 **Description** The issue allows local users to gain privileges via a crafted parameter to a setuid program. **Recommendations** For versions 2.0.0 through 2.0.7, update to a version outside of this range to resolve the issue. For versions 2.5.x through 2.5.5, update to version 2.5.5 or later to resolve the issue. For versions 3.x before 3.5.5, update to version 3.5.5 or later to resolve the issue. For versions 4.x before 4.0.3, update to version 4.0.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Adaptive Computing Moab versions prior to 7.2.9 Adaptive Computing Moab version 8 before 8.0.0 **Description** The issue allows remote attackers to bypass the signature check, impersonate arbitrary users, and execute commands via a message without a signature. **Recommendations** For versions prior to 7.2.9, update to version 7.2.9 or later. For version 8 before 8.0.0, update to version 8.0.0 or later.