Condor is a specialized workload management system for compute-intensive
jobs. It provides a job queuing mechanism, scheduling policy, priority
scheme, and resource monitoring and management.
A flaw was found in the way Condor managed jobs. This could allow a user
that is authorized to submit jobs into Condor to queue a job as if it were
submitted by a different local user, potentially leading to unauthorized
access to that userโs account. (CVE-2009-4133)
Note: Condor will not run jobs as root; therefore, this flaw cannot lead to
a compromise of the root user account.
All Red Hat Enterprise MRG 1.2 users are advised to upgrade to these
updated packages, which contain a backported patch to correct this issue.
Condor must be restarted for the update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | x86_64 | condor | <ย 7.4.1-0.7.1.el5 | condor-7.4.1-0.7.1.el5.x86_64.rpm |
RedHat | 5 | x86_64 | condor-qmf-plugins | <ย 7.4.1-0.7.1.el5 | condor-qmf-plugins-7.4.1-0.7.1.el5.x86_64.rpm |
RedHat | 5 | i386 | condor | <ย 7.4.1-0.7.1.el5 | condor-7.4.1-0.7.1.el5.i386.rpm |
RedHat | 5 | x86_64 | condor-vm-gahp | <ย 7.4.1-0.7.1.el5 | condor-vm-gahp-7.4.1-0.7.1.el5.x86_64.rpm |
RedHat | 5 | i386 | condor-qmf-plugins | <ย 7.4.1-0.7.1.el5 | condor-qmf-plugins-7.4.1-0.7.1.el5.i386.rpm |
RedHat | 5 | i386 | condor-kbdd | <ย 7.4.1-0.7.1.el5 | condor-kbdd-7.4.1-0.7.1.el5.i386.rpm |
RedHat | 5 | x86_64 | condor-kbdd | <ย 7.4.1-0.7.1.el5 | condor-kbdd-7.4.1-0.7.1.el5.x86_64.rpm |
RedHat | 5 | i386 | condor-vm-gahp | <ย 7.4.1-0.7.1.el5 | condor-vm-gahp-7.4.1-0.7.1.el5.i386.rpm |