Accepting request 849253 from network:cluster

OBS-URL: https://build.opensuse.org/request/show/849253 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/slurm?expand=0&rev=49
2020-11-19 10:59:53 +00:00 · 2020-11-19 10:59:53 +00:00 · b50ab109f0
commit b50ab109f0
parent c14773b6e9 370ac32279
4 changed files with 15 additions and 4 deletions
--- a/slurm-20.02.5.tar.bz2
+++ b/slurm-20.02.5.tar.bz2
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:c32a7a32010a526bb8a303df1df081c79dbe15423576543a73c65bdd33301723
-size 6325393
--- a/slurm-20.02.6.tar.bz2
+++ b/slurm-20.02.6.tar.bz2
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:019ccdee6f9cd794ba1417ee4db04aa3780b66e5495a1275c3d278eb9f34274a
+size 6361077
--- a/slurm.changes
+++ b/slurm.changes
@ -1,3 +1,14 @@
+-------------------------------------------------------------------
+Wed Nov 18 08:40:59 UTC 2020 - Ana Guerrero Lopez <aguerrero@suse.com>
+
+- Updated to 20.02.6, addresses two security fixes:
+  * PMIx - fix potential buffer overflows from use of unpackmem().
+    CVE-2020-27745 (bsc#1178890)
+  * X11 forwarding - fix potential leak of the magic cookie when sent as an
+     argument to the xauth command. CVE-2020-27746 (bsc#1178891)
+- And many other bugfixes, full log and details available at:
+  * https://lists.schedmd.com/pipermail/slurm-announce/2020/000045.html
+
 -------------------------------------------------------------------
 Thu Oct 29 12:35:18 UTC 2020 - Ana Guerrero Lopez <aguerrero@suse.com>

--- a/slurm.spec
+++ b/slurm.spec
@ -18,7 +18,7 @@

 # Check file META in sources: update so_version to (API_CURRENT - API_AGE)
 %define so_version 35
-%define ver 20.02.5
+%define ver 20.02.6
 %define _ver _20_02
 %define dl_ver %{ver}
 # so-version is 0 and seems to be stable