Bug#900548: slurm-llnl: CVE-2018-10995: Insecure handling of username and gid fields

Source: slurm-llnl Source-Version: 17.11.7-1 On Fri, Jun 01, 2018 at 09:51:28AM +0200, Salvatore Bonaccorso wrote: > Source: slurm-llnl > Version: 14.03.9-5 > Severity: grave > Tags: security upstream > > Hi, > > The following vulnerability was published for slurm-llnl. > > CVE-2018-10995[0]: >

Bug#900548: slurm-llnl: CVE-2018-10995: Insecure handling of username and gid fields

Source: slurm-llnl Version: 14.03.9-5 Severity: grave Tags: security upstream Hi, The following vulnerability was published for slurm-llnl. CVE-2018-10995[0]: | SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles | user names (aka user_name fields) and group ids (aka gid fields).