Candidate: CVE-2019-6438
PublicDate: 2019-01-31 09:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6438
 https://www.schedmd.com/news.php?id=213
 https://lists.schedmd.com/pipermail/slurm-announce/2019/000018.html
 https://github.com/SchedMD/slurm/commit/750cc23edcc6fddfff21d33bdaf4fb7deb28cfda
Description:
 SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit
 systems.
Ubuntu-Description:
 It was discovered that Slurm mishandles 23-bit systems.A local attacker could
 use this to gain administrative privileges.
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920997
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_slurm-llnl:
upstream_slurm-llnl: released (18.08.5, 17.11.13)
precise/esm_slurm-llnl: DNE
trusty_slurm-llnl: ignored (out of standard support)
trusty/esm_slurm-llnl: needed
xenial_slurm-llnl: ignored (end of standard support, was needed)
bionic_slurm-llnl: needed
cosmic_slurm-llnl: ignored (reached end-of-life)
disco_slurm-llnl: not-affected
eoan_slurm-llnl: DNE
focal_slurm-llnl: not-affected (19.05.3.2-2)
groovy_slurm-llnl: not-affected (19.05.3.2-2)
hirsute_slurm-llnl: DNE
impish_slurm-llnl: DNE
jammy_slurm-llnl: DNE
devel_slurm-llnl: DNE