The following Fedora EPEL 4 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-5119/torque-2.5.7-6...
The following builds have been pushed to Fedora EPEL 4 updates-testing
torque-2.5.7-6.el4
Details about builds:
================================================================================ torque-2.5.7-6.el4 (FEDORA-EPEL-2011-5119) Tera-scale Open-source Resource and QUEue manager -------------------------------------------------------------------------------- Update Information:
This torque update corrects a security vulnerability whereby a user connecting to the torque pbs_server could impersonate another user present within the torque batch system.
In addition a memory leak is fixed, previously memory used for sending and receiving data was not being released.
-------------------------------------------------------------------------------- ChangeLog:
* Mon Nov 21 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-6 - Add torque-rhbz#758740-r5258-dis-close.patch and torque-rhbz#758740-r5270-dis-array.patch * Mon Nov 21 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-5 - Add torque-fix-munge-rhbz#752079-PTII.patch * Thu Nov 17 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-4 - Empty release for release mistake. * Thu Nov 17 2011 Steve Traylen steve.traylen@cern.ch - 2.5.7-3 - Add torque-fix-munge-rhbz#752079.patch -------------------------------------------------------------------------------- References:
[ 1 ] Bug #752079 - Torque and Munge impersonation vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=752079 [ 2 ] Bug #758740 - torque 2.5.7 memory leak. https://bugzilla.redhat.com/show_bug.cgi?id=758740 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org