Security update for slurm_20_11 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:1790-1 Final 1 1 2021-05-27T14:49:40Z current 2021-05-27T14:49:40Z 2021-05-27T14:49:40Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for slurm_20_11 This update for slurm_20_11 fixes the following issues: - Udpate to 20.02.7: - CVE-2021-31215: remote code execution as SlurmUser because of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling (bsc#1186024) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-1790,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-1790,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-1790 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20211790-1/ Link for SUSE-SU-2021:1790-1 https://lists.suse.com/pipermail/sle-security-updates/2021-May/008877.html E-Mail link for SUSE-SU-2021:1790-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1186024 SUSE Bug 1186024 https://www.suse.com/security/cve/CVE-2021-31215/ SUSE CVE CVE-2021-31215 page SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnss_slurm2_20_02-20.02.7-3.19.1 libpmi0_20_02-20.02.7-3.19.1 libslurm35-20.02.7-3.19.1 perl-slurm_20_02-20.02.7-3.19.1 slurm_20_02-20.02.7-3.19.1 slurm_20_02-auth-none-20.02.7-3.19.1 slurm_20_02-config-20.02.7-3.19.1 slurm_20_02-config-man-20.02.7-3.19.1 slurm_20_02-cray-20.02.7-3.19.1 slurm_20_02-devel-20.02.7-3.19.1 slurm_20_02-doc-20.02.7-3.19.1 slurm_20_02-hdf5-20.02.7-3.19.1 slurm_20_02-lua-20.02.7-3.19.1 slurm_20_02-munge-20.02.7-3.19.1 slurm_20_02-node-20.02.7-3.19.1 slurm_20_02-openlava-20.02.7-3.19.1 slurm_20_02-pam_slurm-20.02.7-3.19.1 slurm_20_02-plugins-20.02.7-3.19.1 slurm_20_02-rest-20.02.7-3.19.1 slurm_20_02-seff-20.02.7-3.19.1 slurm_20_02-sjstat-20.02.7-3.19.1 slurm_20_02-slurmdbd-20.02.7-3.19.1 slurm_20_02-sql-20.02.7-3.19.1 slurm_20_02-sview-20.02.7-3.19.1 slurm_20_02-torque-20.02.7-3.19.1 slurm_20_02-webdoc-20.02.7-3.19.1 libnss_slurm2_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libpmi0_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libslurm35-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS perl-slurm_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-auth-none-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-config-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-config-man-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-devel-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-doc-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-lua-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-munge-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-node-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-pam_slurm-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-plugins-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-slurmdbd-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-sql-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-sview-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-torque-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS slurm_20_02-webdoc-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnss_slurm2_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libpmi0_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libslurm35-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS perl-slurm_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-auth-none-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-config-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-config-man-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-devel-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-doc-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-lua-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-munge-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-node-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-pam_slurm-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-plugins-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-slurmdbd-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-sql-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-sview-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-torque-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS slurm_20_02-webdoc-20.02.7-3.19.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling. CVE-2021-31215 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnss_slurm2_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libpmi0_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libslurm35-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:perl-slurm_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-auth-none-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-config-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-config-man-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-devel-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-doc-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-lua-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-munge-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-node-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-pam_slurm-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-plugins-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-slurmdbd-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-sql-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-sview-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-torque-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:slurm_20_02-webdoc-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnss_slurm2_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libpmi0_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libslurm35-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:perl-slurm_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-auth-none-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-config-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-config-man-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-devel-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-doc-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-lua-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-munge-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-node-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-pam_slurm-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-plugins-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-slurmdbd-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-sql-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-sview-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-torque-20.02.7-3.19.1 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:slurm_20_02-webdoc-20.02.7-3.19.1 important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20211790-1/ https://www.suse.com/security/cve/CVE-2021-31215.html CVE-2021-31215 https://bugzilla.suse.com/1186024 SUSE Bug 1186024