rpm/slurm
SHA256
1
0
Fork 0
forked from pool/slurm
Code Pull Requests Activity

- updated to 21.08.4 which fixes (CVE-2021-43337) which is only present

Browse Source 
in 21.08 tree.
  * CVE-2021-43337:
    For sites using the new AccountingStoreFlags=job_script and/or job_env
    options, an issue was reported with the access control rules in SlurmDBD
    that will permit users to request job scripts and environment files that
    they should not have access to. (Scripts/environments are meant to only be
    accessible by user accounts with administrator privileges, by account
    coordinators for jobs submitted under their account, and by the user
    themselves.)
- changes from 21.08.3:
  * This includes a number of fixes since the last release a month ago,
    including one critical fix to prevent a communication issue between
    slurmctld and slurmdbd for sites that have started using the new
    AccountingStoreFlags=job_script functionality.

OBS-URL: https://build.opensuse.org/package/show/network:cluster/slurm?expand=0&rev=193
This commit is contained in:
Christian Goll 2021-11-17 08:37:51 +00:00 committed by Git OBS Bridge
parent c67f43163f
commit d4c2b2bcf3
4 changed files with 24 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
slurm-21.08.2.tar.bz2
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:6cfea3ae89021dd5986109ef0bda5ad1418f88b61a446631bea576fd6c3399f3
size 6739808

3
slurm-21.08.4.tar.bz2 Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:cf5256dfe08c565ddcca387a4d902a1643e125d427c8c2e0c07a32c950bc57aa
size 6743524

19
slurm.changes
View File

@ -1,3 +1,22 @@
-------------------------------------------------------------------
Wed Nov 17 08:33:13 UTC 2021 - Christian Goll <cgoll@suse.com>
- updated to 21.08.4 which fixes (CVE-2021-43337) which is only present
in 21.08 tree.
* CVE-2021-43337:
For sites using the new AccountingStoreFlags=job_script and/or job_env
options, an issue was reported with the access control rules in SlurmDBD
that will permit users to request job scripts and environment files that
they should not have access to. (Scripts/environments are meant to only be
accessible by user accounts with administrator privileges, by account
coordinators for jobs submitted under their account, and by the user
themselves.)
- changes from 21.08.3:
* This includes a number of fixes since the last release a month ago,
including one critical fix to prevent a communication issue between
slurmctld and slurmdbd for sites that have started using the new
AccountingStoreFlags=job_script functionality.
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Oct 29 15:54:53 UTC 2021 - Egbert Eich <eich@suse.com> Fri Oct 29 15:54:53 UTC 2021 - Egbert Eich <eich@suse.com>

4
slurm.spec
View File

@ -1,5 +1,5 @@
# #
# spec file for package slurm # spec file
# #
# Copyright (c) 2021 SUSE LLC # Copyright (c) 2021 SUSE LLC
# #
@ -18,7 +18,7 @@
# Check file META in sources: update so_version to (API_CURRENT - API_AGE) # Check file META in sources: update so_version to (API_CURRENT - API_AGE)
%define so_version 37 %define so_version 37
%define ver 21.08.2 %define ver 21.08.4
%define _ver _21_08 %define _ver _21_08
%define dl_ver %{ver} %define dl_ver %{ver}
# so-version is 0 and seems to be stable # so-version is 0 and seems to be stable