CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
25.1%
libslurm.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to improper size checks in the size_valp
within pack.c
allowing an attacker to cause a Dos.
bugzilla.suse.com/show_bug.cgi?id=1218050
github.com/advisories/GHSA-pm82-478g-gq88
github.com/SchedMD/slurm/commit/28e4fa4095cb342a760cb8f240e2ac9bf422a8a2
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FEDDYEE2WK7FHWBHKON3OZVQI56WSQ/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYQS3LFGC4HE4WCW4L3NAA2I6FRIWMNO/
lists.schedmd.com/pipermail/slurm-announce/2023/000103.html
www.schedmd.com/security-archive.php