Debian Security Advisory

DSA-4841-1 slurm-llnl -- security update

Date Reported:
27 Jan 2021
Affected Packages:
slurm-llnl
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CVE-2019-19728, CVE-2020-12693, CVE-2020-27745, CVE-2020-27746.
More information:

Multiple security issues were discovered in the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system, which could result in denial of service, information disclosure or privilege escalation.

For the stable distribution (buster), these problems have been fixed in version 18.08.5.2-1+deb10u2.

We recommend that you upgrade your slurm-llnl packages.

For the detailed security status of slurm-llnl please refer to its security tracker page at: https://security-tracker.debian.org/tracker/slurm-llnl