[SECURITY] [DLA 78-1] torque security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 78-1] torque security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Mon, 27 Oct 2014 21:48:40 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.02.1410271958490.10624@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : torque
Version        : 2.4.8+dfsg-9squeeze5
CVE ID         : CVE-2014-3684

Chad Vizino reported a vulnerability in torque, a PBS-derived batch
processing queueing system. A non-root user could exploit the flaw in
the tm_adopt() library call to kill any process, including root-owned
ones on any node in a job.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=idgG
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 77-1] libtasn1-3 security update
Next by Date: [SECURITY] [DLA 58-3] apt robustness improvements
Previous by thread: [SECURITY] [DLA 77-1] libtasn1-3 security update
Next by thread: [SECURITY] [DLA 58-3] apt robustness improvements
Index(es):
- Date
- Thread