Mandriva Linux Security Advisory : torque (MDVSA-2015:124)
Medium Nessus Plugin ID 82377
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated torque packages fix security vulnerabilities :
Chad Vizino reported that within a TORQUE Resource Manager job a non-root user could use a vulnerability in the tm_adopt() library call to kill processes he/she doesn't own including root-owned ones on any node in a job (CVE-2014-3684).
This update implements the upstream fixes.
SolutionUpdate the affected packages.