vulnerability

SUSE: CVE-2020-27746: SUSE Linux Security Advisory

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Nov 24, 2020
Added
Nov 27, 2020
Modified
Feb 4, 2022

Description

Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem.

Solution(s)

suse-upgrade-libnss_slurm2suse-upgrade-libnss_slurm2_20_02suse-upgrade-libnss_slurm2_20_11suse-upgrade-libpmi0suse-upgrade-libpmi0_18_08suse-upgrade-libpmi0_20_02suse-upgrade-libpmi0_20_11suse-upgrade-libslurm33suse-upgrade-libslurm35suse-upgrade-libslurm36suse-upgrade-pdshsuse-upgrade-pdsh-dshgroupsuse-upgrade-pdsh-genderssuse-upgrade-pdsh-machinessuse-upgrade-pdsh-netgroupsuse-upgrade-pdsh-slurmsuse-upgrade-pdsh-slurm_18_08suse-upgrade-pdsh-slurm_20_02suse-upgrade-pdsh-slurm_20_11suse-upgrade-perl-slurmsuse-upgrade-perl-slurm_18_08suse-upgrade-perl-slurm_20_02suse-upgrade-perl-slurm_20_11suse-upgrade-slurmsuse-upgrade-slurm-auth-nonesuse-upgrade-slurm-configsuse-upgrade-slurm-config-mansuse-upgrade-slurm-craysuse-upgrade-slurm-develsuse-upgrade-slurm-docsuse-upgrade-slurm-hdf5suse-upgrade-slurm-luasuse-upgrade-slurm-mungesuse-upgrade-slurm-nodesuse-upgrade-slurm-openlavasuse-upgrade-slurm-pam_slurmsuse-upgrade-slurm-pluginssuse-upgrade-slurm-restsuse-upgrade-slurm-seffsuse-upgrade-slurm-sjstatsuse-upgrade-slurm-slurmdbdsuse-upgrade-slurm-sqlsuse-upgrade-slurm-sviewsuse-upgrade-slurm-torquesuse-upgrade-slurm-webdocsuse-upgrade-slurm_18_08suse-upgrade-slurm_18_08-auth-nonesuse-upgrade-slurm_18_08-configsuse-upgrade-slurm_18_08-develsuse-upgrade-slurm_18_08-docsuse-upgrade-slurm_18_08-luasuse-upgrade-slurm_18_08-mungesuse-upgrade-slurm_18_08-nodesuse-upgrade-slurm_18_08-pam_slurmsuse-upgrade-slurm_18_08-pluginssuse-upgrade-slurm_18_08-slurmdbdsuse-upgrade-slurm_18_08-sqlsuse-upgrade-slurm_18_08-torquesuse-upgrade-slurm_20_02suse-upgrade-slurm_20_02-auth-nonesuse-upgrade-slurm_20_02-configsuse-upgrade-slurm_20_02-config-mansuse-upgrade-slurm_20_02-develsuse-upgrade-slurm_20_02-docsuse-upgrade-slurm_20_02-luasuse-upgrade-slurm_20_02-mungesuse-upgrade-slurm_20_02-nodesuse-upgrade-slurm_20_02-pam_slurmsuse-upgrade-slurm_20_02-pluginssuse-upgrade-slurm_20_02-slurmdbdsuse-upgrade-slurm_20_02-sqlsuse-upgrade-slurm_20_02-sviewsuse-upgrade-slurm_20_02-torquesuse-upgrade-slurm_20_11suse-upgrade-slurm_20_11-auth-nonesuse-upgrade-slurm_20_11-configsuse-upgrade-slurm_20_11-config-mansuse-upgrade-slurm_20_11-develsuse-upgrade-slurm_20_11-docsuse-upgrade-slurm_20_11-luasuse-upgrade-slurm_20_11-mungesuse-upgrade-slurm_20_11-nodesuse-upgrade-slurm_20_11-pam_slurmsuse-upgrade-slurm_20_11-pluginssuse-upgrade-slurm_20_11-slurmdbdsuse-upgrade-slurm_20_11-sqlsuse-upgrade-slurm_20_11-sviewsuse-upgrade-slurm_20_11-torquesuse-upgrade-slurm_20_11-webdoc
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.