Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2014.0408
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2014-0408)
Zusammenfassung:	The remote host is missing an update for the 'torque' package(s) announced via the MGASA-2014-0408 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'torque' package(s) announced via the MGASA-2014-0408 advisory. Vulnerability Insight: Updated torque packages fix security vulnerabilities: Chad Vizino reported that within a TORQUE Resource Manager job a non-root user could use a vulnerability in the tm_adopt() library call to kill processes he/she doesn't own including root-owned ones on any node in a job (CVE-2014-3684). This update implements the upstream fixes. Affected Software/OS: 'torque' package(s) on Mageia 3, Mageia 4. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3684 61350 http://secunia.com/advisories/61350 61960 http://secunia.com/advisories/61960 DSA-3058 http://www.debian.org/security/2014/dsa-3058 FEDORA-2015-8544 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html FEDORA-2015-8571 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html FEDORA-2015-8577 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html MDVSA-2015:124 http://www.mandriva.com/security/advisories?name=MDVSA-2015:124 [oss-security] 20141002 tm_adopt() vulnerability in TORQUE Resource Manager http://openwall.com/lists/oss-security/2014/10/02/44 [oss-security] 20141003 Re: tm_adopt() vulnerability in TORQUE Resource Manager http://openwall.com/lists/oss-security/2014/10/02/45 http://advisories.mageia.org/MGASA-2014-0408.html
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.