[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1058720: slurm-wlm: CVE-2023-49933 CVE-2023-49935 CVE-2023-49936 CVE-2023-49937 CVE-2023-49938

Hi Gennaro,

On Sat, Dec 30, 2023 at 10:55:32PM +0100, Gennaro Oliva wrote:
> Dear Salvatore,
> I prepared an updated version of the slurm-wlm package for bookworm in
> response to CVE-2023-49933/49935/49936/49937/49938
> 
> The package can be found here:
> 
> https://people.debian.org/~oliva/slurm-wlm-22.05.8-4+deb12u2
> 
> debdiff attached.
> 
> A new package for sid in under preparation.
> 
> Please let me know if I can be of any further help.
> 
> I take this opportunity to wish you and to all the security team members
> a successful and prosperous new year.

Reviewing your uploaded changes, the changelog mentions
CVE-2023-49935, but believe his was not affecting 22.05.8.  Let's
still release with that in the changelog, the security-tracker should
be already correct on that.

Do you have any progress for unstable/trixie so we do not have a
regression once after the DSA is released?

Regards,
Salvatore
Reply to: