PT-2023-28164 · Schedmd+2 · Slurm+2
François Diakhate
·
Publicado
2023-10-11
·
Atualizado
2026-05-06
·
CVE-2023-41914
CVSS v3.1
7.0
Alta
| Vetor | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SchedMD Slurm versions 23.02.x through 23.02.5
SchedMD Slurm versions 22.05.x through 22.05.9
Description
The issue allows filesystem race conditions, which can be exploited to gain ownership of a file, overwrite a file, or delete files. SchedMD customers were informed about the issue and provided a patch on request.
Recommendations
For SchedMD Slurm versions 23.02.x through 23.02.5, update to version 23.02.6 to resolve the issue.
For SchedMD Slurm versions 22.05.x through 22.05.9, update to version 22.05.10 to resolve the issue.
Correção
Race Condition
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Debian
Slurm
Suse