Bug#1086003: marked as done (slurm-wlm: CVE-2024-48936)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Wed, 06 Nov 2024 23:19:59 +0000
with message-id <E1t8pJf-00DpCd-ST@fasolo.debian.org>
and subject line Bug#1086003: fixed in slurm-wlm 24.05.4-1
has caused the Debian Bug report #1086003,
regarding slurm-wlm: CVE-2024-48936
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1086003: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086003
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: slurm-wlm: CVE-2024-48936
• From: Salvatore Bonaccorso <carnil@debian.org>
• Date: Thu, 24 Oct 2024 17:43:04 +0200
• Message-id: <172978458455.328604.4625943353122045672.reportbug@eldamar.lan>

Source: slurm-wlm
Version: 24.05.2-1
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: carnil@debian.org, Debian Security Team <team@security.debian.org>

Hi,

The following vulnerability was published for slurm-wlm.

CVE-2024-48936[0].

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2024-48936
    https://www.cve.org/CVERecord?id=CVE-2024-48936
[1] https://www.schedmd.com/slurm-version-24-05-4-is-now-available/

Regards,
Salvatore

--- End Message ---

--- Begin Message ---

• To: 1086003-close@bugs.debian.org
• Subject: Bug#1086003: fixed in slurm-wlm 24.05.4-1
• From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
• Date: Wed, 06 Nov 2024 23:19:59 +0000
• Message-id: <E1t8pJf-00DpCd-ST@fasolo.debian.org>
• Reply-to: Gennaro Oliva <oliva@debian.org>

Source: slurm-wlm
Source-Version: 24.05.4-1
Done: Gennaro Oliva <oliva@debian.org>

We believe that the bug you reported is fixed in the latest version of
slurm-wlm, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1086003@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Gennaro Oliva <oliva@debian.org> (supplier of updated slurm-wlm package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 06 Nov 2024 22:43:30 +0100
Source: slurm-wlm
Architecture: source
Version: 24.05.4-1
Distribution: unstable
Urgency: medium
Maintainer: Debian HPC Team <debian-hpc@lists.debian.org>
Changed-By: Gennaro Oliva <oliva@debian.org>
Closes: 1086003
Changes:
 slurm-wlm (24.05.4-1) unstable; urgency=medium
 .
   * New upstream release fixes CVE-2024-48936 (Closes: 1086003)
   * Update libslurm symbols file
   * Fix not-installed
   * Remove unused overrides
Checksums-Sha1:
 78b665aaf72575a296a4330c56999f15952806b1 5413 slurm-wlm_24.05.4-1.dsc
 aac86e3d666e595470d11485b933c47c51fd3311 9792155 slurm-wlm_24.05.4.orig.tar.gz
 ead7e99a0d0eaf1245d27e1d869476c962849606 137188 slurm-wlm_24.05.4-1.debian.tar.xz
 c687d3b2a60b0b8f54e488e639cfc988e642abd3 33896 slurm-wlm_24.05.4-1_amd64.buildinfo
Checksums-Sha256:
 7ace0dad1705a8b184ef465476523be8f6c09b05a2360ddd8b04095769cdee2a 5413 slurm-wlm_24.05.4-1.dsc
 c723034ca27ff61b41c24ee12625d97be7485458bbbef659f6c77005355ee737 9792155 slurm-wlm_24.05.4.orig.tar.gz
 76d389c2d132e58ed8b0a8928ae1c68a34c2a597e6f6edefb6d2a33e708dbef8 137188 slurm-wlm_24.05.4-1.debian.tar.xz
 e91d00bb7c06ed0e2e58da592c0838a2a766c449681120418af5983fd13089c2 33896 slurm-wlm_24.05.4-1_amd64.buildinfo
Files:
 b8b48196088ed1bef51ec56c7dbecbfd 5413 admin optional slurm-wlm_24.05.4-1.dsc
 49bf7025efe7ffd82083a91d34bc2950 9792155 admin optional slurm-wlm_24.05.4.orig.tar.gz
 38da4afe6133558ac72ff1b9197adee4 137188 admin optional slurm-wlm_24.05.4-1.debian.tar.xz
 70361b30b02dd60f19509773f1d2b7d2 33896 admin optional slurm-wlm_24.05.4-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=expq
-----END PGP SIGNATURE-----

Attachment: pgpELm94f9hb4.pgp
Description: PGP signature

--- End Message ---