forked from pool/slurm
Christian Goll
d4c2b2bcf3
in 21.08 tree.
* CVE-2021-43337:
For sites using the new AccountingStoreFlags=job_script and/or job_env
options, an issue was reported with the access control rules in SlurmDBD
that will permit users to request job scripts and environment files that
they should not have access to. (Scripts/environments are meant to only be
accessible by user accounts with administrator privileges, by account
coordinators for jobs submitted under their account, and by the user
themselves.)
- changes from 21.08.3:
* This includes a number of fixes since the last release a month ago,
including one critical fix to prevent a communication issue between
slurmctld and slurmdbd for sites that have started using the new
AccountingStoreFlags=job_script functionality.
OBS-URL: https://build.opensuse.org/package/show/network:cluster/slurm?expand=0&rev=193
|
||
|---|---|---|
| _service | ||
| .gitattributes | ||
| .gitignore | ||
| load-pmix-major-version.patch | ||
| pam_slurm-Initialize-arrays-and-pass-sizes.patch | ||
| Remove-rpath-from-build.patch | ||
| slurm-2.4.4-init.patch | ||
| slurm-21.08.4.tar.bz2 | ||
| slurm-rpmlintrc | ||
| slurm.changes | ||
| slurm.spec | ||
| slurmctld.xml | ||
| slurmd.xml | ||
| slurmdbd.xml | ||