Advisories ยป MGASA-2013-0308

Updated torque packages fix CVE-2013-4319

Publication date: 17 Oct 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4319

Description

Updated torque package fixes security vulnerability:

A non-priviledged user who was able to run jobs or login to a node which ran
pbs_server or pbs_mom, could submit arbitrary jobs to a pbs_mom daemon to queue
and run the job, which would run as root (CVE-2013-4319).
                

References

SRPMS

2/core

3/core