Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package slurm for openSUSE:Factory checked
in at 2022-05-12 22:59:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/slurm (Old)
and /work/SRC/openSUSE:Factory/.slurm.new.1538 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "slurm"
Thu May 12 22:59:35 2022 rev:72 rq:976280 version:21.08.8
Changes:
--------
--- /work/SRC/openSUSE:Factory/slurm/slurm.changes 2022-05-06
19:00:46.405450585 +0200
+++ /work/SRC/openSUSE:Factory/.slurm.new.1538/slurm.changes 2022-05-12
23:00:06.008775840 +0200
@@ -1,0 +2,6 @@
+Tue May 10 10:26:02 UTC 2022 - Egbert Eich <e...@suse.com>
+
+- Add a comment about the CommunicationParameters=block_null_hash
+ option warning users who migrate - just in case.
+
+-------------------------------------------------------------------
@@ -4,2 +10,2 @@
-- Update to 21.08.8 which fixes CVE-2022-29500, CVE-2022-29501
- and CVE-2022-29502
+- Update to 21.08.8 which fixes CVE-2022-29500 (bsc#1199278),
+ CVE-2022-29501 (bsc#1199279), and CVE-2022-29502 (bsc#1199281).
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ slurm.spec ++++++
--- /var/tmp/diff_new_pack.yMgWJG/_old 2022-05-12 23:00:06.864776990 +0200
+++ /var/tmp/diff_new_pack.yMgWJG/_new 2022-05-12 23:00:06.880777011 +0200
@@ -651,6 +651,8 @@
-e '/.*BackupAddr=.*/d' %{buildroot}/%{_sysconfdir}/%{pname}/slurm.conf
cat >>%{buildroot}/%{_sysconfdir}/%{pname}/slurm.conf <<EOF
# Potential exploit mitigation CVE-2022-29500
+# When upgrading from a version without this fix
+# enable only after all daemons have been upgraded
CommunicationParameters=block_null_hash
# SUSE default configuration
PropagateResourceLimitsExcept=MEMLOCK
