Htcondor · Htcondor · CVE-2021-45102
Name of the Vulnerable Software and Affected Versions:
HTCondor versions 9.0.x through 9.0.3
HTCondor versions 9.1.x through 9.1.1
Description:
An issue was discovered in HTCondor when authenticating to an HTCondor daemon using a SciToken. A user may be granted authorizations beyond what the token should allow.
Recommendations:
For HTCondor versions 9.0.x through 9.0.3, update to version 9.0.4 or later.
For HTCondor versions 9.1.x through 9.1.1, update to version 9.1.2 or later.