Source: slurm-llnl Source-Version: 17.11.7-1 On Fri, Jun 01, 2018 at 09:51:28AM +0200, Salvatore Bonaccorso wrote: > Source: slurm-llnl > Version: 14.03.9-5 > Severity: grave > Tags: security upstream > > Hi, > > The following vulnerability was published for slurm-llnl. > > CVE-2018-10995[0]: > | SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles > | user names (aka user_name fields) and group ids (aka gid fields). > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
This issue was adressed with the 17.11.7-1 upload to unstable, closing the bug accordingly. Regards, Salvatore
