Simple Linux Utility for Resource Management (SLURM) 1.2 and 1.3 prior to 1.3.14 does not properly set supplementary groups before invoking (1) sbcast from the slurmd daemon or (2) strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
llnl slurm 1.3.3 |
||
llnl slurm 1.3.4 |
||
llnl slurm 1.3 |
||
llnl slurm 1.3.8 |
||
llnl slurm 1.2 |
||
llnl slurm |
||
llnl slurm 1.3.2 |
||
llnl slurm 1.3.10 |
||
llnl slurm 1.3.11 |
||
llnl slurm 1.3.1 |
||
llnl slurm 1.3.12 |
||
llnl slurm 1.3.7 |
||
llnl slurm 1.3.9 |
||
llnl slurm 1.3.5 |
||
llnl slurm 1.3.6 |