SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for slurm fixes the following issues :
- Fix Authentication Bypass when Message Aggregation is enabled CVE-2020-12693 This fixes and issue where authentication could be bypassed via an alternate path or channel when message Aggregation was enabled. A race condition allowed a user to launch a process as an arbitrary user. Add:
Fix-Authentication-Bypass-when-Message-Aggregation-is-en abled-CVE-2020-12693.patch (CVE-2020-12693, bsc#1172004).
- Remove unneeded build dependency to postgresql-devel.
This update was imported from the SUSE:SLE-15-SP1:Update update project.
SolutionUpdate the affected slurm packages.