{"affected":[{"ecosystem_specific":{"binaries":[{"libpmi0":"17.11.7-6.3.1","libslurm32":"17.11.7-6.3.1","perl-slurm":"17.11.7-6.3.1","slurm":"17.11.7-6.3.1","slurm-auth-none":"17.11.7-6.3.1","slurm-config":"17.11.7-6.3.1","slurm-devel":"17.11.7-6.3.1","slurm-doc":"17.11.7-6.3.1","slurm-lua":"17.11.7-6.3.1","slurm-munge":"17.11.7-6.3.1","slurm-node":"17.11.7-6.3.1","slurm-pam_slurm":"17.11.7-6.3.1","slurm-plugins":"17.11.7-6.3.1","slurm-slurmdbd":"17.11.7-6.3.1","slurm-sql":"17.11.7-6.3.1","slurm-torque":"17.11.7-6.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 15","name":"slurm","purl":"pkg:rpm/suse/slurm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"17.11.7-6.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for slurm to version 17.11.7 fixes the following issues:\n\nThis security issue was fixed:\n\n- CVE-2018-10995: Ensure correct handling of user names and group ids (bsc#1095508).\n\nThese non-security issues were fixed:\n\n- CRAY - Add slurmsmwd to the contribs/cray dir\n- PMIX - Added the direct connect authentication.\n- Prevent the backup slurmctld from losing the active/available node features\n  list on takeover.\n- Be able to force power_down of cloud node even if in power_save state.\n- Allow cloud nodes to be recognized in Slurm when booted out of band.\n- Notify srun and ctld when unkillable stepd exits.\n- Fixes daemoniziation in newly introduced slurmsmwd daemon.\n","id":"SUSE-SU-2018:1925-1","modified":"2018-07-11T14:42:41Z","published":"2018-07-11T14:42:41Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20181925-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1095508"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-10995"}],"related":["CVE-2018-10995"],"summary":"Security update for slurm","upstream":["CVE-2018-10995"]}