Tomasz Grabowski

**Name of the Vulnerable Software and Affected Versions** Load Sharing Facility versions 4.x through 6.x **Description** The issue is related to a buffer overflow in the eauth component, which can be triggered by a long `LSF From PC` parameter. This can cause a denial of service, resulting in a segmentation fault, and potentially allow the execution of arbitrary code. The attack can be conducted by local users or remote attackers within the LSF cluster. **Recommendations** For Load Sharing Facility versions 4.x through 6.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Load Sharing Facility (LSF) versions 4.x through 6.x **Description** The issue allows remote attackers within the local cluster to gain privileges by utilizing the LSF EAUTH UID environment variable, if it exists, instead of the real UID of the user. **Recommendations** For versions 4.x through 6.x, consider restricting access to the LSF EAUTH UID environment variable to prevent unauthorized privilege escalation until a patch is available. As a temporary workaround, avoid using the LSF EAUTH UID environment variable to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: LSF version 5.1 Description: The issue allows local users to execute arbitrary programs. This is achieved by modifying the `LSF ENVDIR` environment variable to reference an alternate lsf.conf file, then modifying `LSF SERVERDIR` to point to a malicious lim program, which lsadmin then executes. Recommendations: For LSF version 5.1, restrict access to the `LSF ENVDIR` and `LSF SERVERDIR` environment variables to prevent modification by unauthorized users. As a temporary workaround, consider disabling the execution of the lim program by lsadmin until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.