vulnerability
SUSE: CVE-2020-12693: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:H/Au:N/C:P/I:P/A:P) | May 21, 2020 | Sep 15, 2020 | Feb 4, 2022 |
Severity
5
CVSS
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
Published
May 21, 2020
Added
Sep 15, 2020
Modified
Feb 4, 2022
Description
Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel. A race condition allows a user to launch a process as an arbitrary user.
Solutions
suse-upgrade-libnss_slurm2_20_02suse-upgrade-libnss_slurm2_20_11suse-upgrade-libpmi0suse-upgrade-libpmi0_18_08suse-upgrade-libpmi0_20_02suse-upgrade-libpmi0_20_11suse-upgrade-libslurm31suse-upgrade-libslurm33suse-upgrade-libslurm35suse-upgrade-libslurm36suse-upgrade-pdshsuse-upgrade-pdsh-dshgroupsuse-upgrade-pdsh-genderssuse-upgrade-pdsh-machinessuse-upgrade-pdsh-netgroupsuse-upgrade-pdsh-slurmsuse-upgrade-pdsh-slurm_18_08suse-upgrade-pdsh-slurm_20_02suse-upgrade-pdsh-slurm_20_11suse-upgrade-perl-slurmsuse-upgrade-perl-slurm_18_08suse-upgrade-perl-slurm_20_02suse-upgrade-perl-slurm_20_11suse-upgrade-slurmsuse-upgrade-slurm-auth-nonesuse-upgrade-slurm-configsuse-upgrade-slurm-config-mansuse-upgrade-slurm-craysuse-upgrade-slurm-develsuse-upgrade-slurm-docsuse-upgrade-slurm-hdf5suse-upgrade-slurm-luasuse-upgrade-slurm-mungesuse-upgrade-slurm-nodesuse-upgrade-slurm-openlavasuse-upgrade-slurm-pam_slurmsuse-upgrade-slurm-pluginssuse-upgrade-slurm-sched-wikisuse-upgrade-slurm-seffsuse-upgrade-slurm-sjstatsuse-upgrade-slurm-slurmdb-directsuse-upgrade-slurm-slurmdbdsuse-upgrade-slurm-sqlsuse-upgrade-slurm-sviewsuse-upgrade-slurm-torquesuse-upgrade-slurm-webdocsuse-upgrade-slurm_18_08suse-upgrade-slurm_18_08-auth-nonesuse-upgrade-slurm_18_08-configsuse-upgrade-slurm_18_08-develsuse-upgrade-slurm_18_08-docsuse-upgrade-slurm_18_08-luasuse-upgrade-slurm_18_08-mungesuse-upgrade-slurm_18_08-nodesuse-upgrade-slurm_18_08-pam_slurmsuse-upgrade-slurm_18_08-pluginssuse-upgrade-slurm_18_08-slurmdbdsuse-upgrade-slurm_18_08-sqlsuse-upgrade-slurm_18_08-torquesuse-upgrade-slurm_20_02suse-upgrade-slurm_20_02-auth-nonesuse-upgrade-slurm_20_02-configsuse-upgrade-slurm_20_02-config-mansuse-upgrade-slurm_20_02-develsuse-upgrade-slurm_20_02-docsuse-upgrade-slurm_20_02-luasuse-upgrade-slurm_20_02-mungesuse-upgrade-slurm_20_02-nodesuse-upgrade-slurm_20_02-pam_slurmsuse-upgrade-slurm_20_02-pluginssuse-upgrade-slurm_20_02-slurmdbdsuse-upgrade-slurm_20_02-sqlsuse-upgrade-slurm_20_02-sviewsuse-upgrade-slurm_20_02-torquesuse-upgrade-slurm_20_11suse-upgrade-slurm_20_11-auth-nonesuse-upgrade-slurm_20_11-configsuse-upgrade-slurm_20_11-config-mansuse-upgrade-slurm_20_11-develsuse-upgrade-slurm_20_11-docsuse-upgrade-slurm_20_11-luasuse-upgrade-slurm_20_11-mungesuse-upgrade-slurm_20_11-nodesuse-upgrade-slurm_20_11-pam_slurmsuse-upgrade-slurm_20_11-pluginssuse-upgrade-slurm_20_11-slurmdbdsuse-upgrade-slurm_20_11-sqlsuse-upgrade-slurm_20_11-sviewsuse-upgrade-slurm_20_11-torquesuse-upgrade-slurm_20_11-webdoc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.