Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package slurm for openSUSE:Factory checked in at 2021-11-21 23:51:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/slurm (Old) and /work/SRC/openSUSE:Factory/.slurm.new.1895 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "slurm" Sun Nov 21 23:51:50 2021 rev:68 rq:932162 version:21.08.4 Changes: -------- --- /work/SRC/openSUSE:Factory/slurm/slurm.changes 2021-10-29 22:35:45.443716662 +0200 +++ /work/SRC/openSUSE:Factory/.slurm.new.1895/slurm.changes 2021-11-21 23:52:13.478244706 +0100 @@ -1,0 +2,19 @@ +Wed Nov 17 08:33:13 UTC 2021 - Christian Goll <[email protected]> + +- updated to 21.08.4 which fixes (CVE-2021-43337) which is only present + in 21.08 tree. + * CVE-2021-43337: + For sites using the new AccountingStoreFlags=job_script and/or job_env + options, an issue was reported with the access control rules in SlurmDBD + that will permit users to request job scripts and environment files that + they should not have access to. (Scripts/environments are meant to only be + accessible by user accounts with administrator privileges, by account + coordinators for jobs submitted under their account, and by the user + themselves.) +- changes from 21.08.3: + * This includes a number of fixes since the last release a month ago, + including one critical fix to prevent a communication issue between + slurmctld and slurmdbd for sites that have started using the new + AccountingStoreFlags=job_script functionality. + +------------------------------------------------------------------- @@ -12 +31 @@ -- added service definitions for firewalld +- added service definitions for firewalld (JSC#SLE-22741) Old: ---- slurm-21.08.2.tar.bz2 New: ---- slurm-21.08.4.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ slurm.spec ++++++ --- /var/tmp/diff_new_pack.Z6TAt9/_old 2021-11-21 23:52:15.030239702 +0100 +++ /var/tmp/diff_new_pack.Z6TAt9/_new 2021-11-21 23:52:15.034239689 +0100 @@ -1,5 +1,5 @@ # -# spec file for package slurm +# spec file # # Copyright (c) 2021 SUSE LLC # @@ -18,7 +18,7 @@ # Check file META in sources: update so_version to (API_CURRENT - API_AGE) %define so_version 37 -%define ver 21.08.2 +%define ver 21.08.4 %define _ver _21_08 %define dl_ver %{ver} # so-version is 0 and seems to be stable ++++++ slurm-21.08.2.tar.bz2 -> slurm-21.08.4.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/slurm/slurm-21.08.2.tar.bz2 /work/SRC/openSUSE:Factory/.slurm.new.1895/slurm-21.08.4.tar.bz2 differ: char 11, line 1
