{"affected":[{"ecosystem_specific":{"binaries":[{"libnss_slurm2_23_02":"23.02.7-3.19.1","libpmi0_23_02":"23.02.7-3.19.1","libslurm39":"23.02.7-3.19.1","perl-slurm_23_02":"23.02.7-3.19.1","slurm_23_02":"23.02.7-3.19.1","slurm_23_02-auth-none":"23.02.7-3.19.1","slurm_23_02-config":"23.02.7-3.19.1","slurm_23_02-config-man":"23.02.7-3.19.1","slurm_23_02-cray":"23.02.7-3.19.1","slurm_23_02-devel":"23.02.7-3.19.1","slurm_23_02-doc":"23.02.7-3.19.1","slurm_23_02-lua":"23.02.7-3.19.1","slurm_23_02-munge":"23.02.7-3.19.1","slurm_23_02-node":"23.02.7-3.19.1","slurm_23_02-pam_slurm":"23.02.7-3.19.1","slurm_23_02-plugin-ext-sensors-rrd":"23.02.7-3.19.1","slurm_23_02-plugins":"23.02.7-3.19.1","slurm_23_02-slurmdbd":"23.02.7-3.19.1","slurm_23_02-sql":"23.02.7-3.19.1","slurm_23_02-sview":"23.02.7-3.19.1","slurm_23_02-torque":"23.02.7-3.19.1","slurm_23_02-webdoc":"23.02.7-3.19.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 12","name":"slurm_23_02","purl":"pkg:rpm/suse/slurm_23_02&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"23.02.7-3.19.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for slurm_23_02 fixes the following issues:\n\n- CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators\n  to promote a user to Administrator (bsc#1243666). \n","id":"SUSE-SU-2025:01752-1","modified":"2025-05-29T12:54:31Z","published":"2025-05-29T12:54:31Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202501752-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1243666"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43904"}],"related":["CVE-2025-43904"],"summary":"Security update for slurm_23_02","upstream":["CVE-2025-43904"]}