Fedora 9 : condor-7.0.4-1.fc9 (2008-7205)
High Nessus Plugin ID 33883
SynopsisThe remote Fedora host is missing a security update.
DescriptionA flaw was found in a way condor interpreted wild cards in the authorization lists. Certain authorization lists using wild cards in DENY rules (such as DENY_WRITE or HOSTDENY_WRITE) that conflict with with definitions in ALLOW rule could permit authenticated remote users to submit computation jobs, even when such access should have been denied.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected condor package.