[torqueusers] Security Vulnerability in Torque

Jason Allen jallen at fnal.gov
Fri Oct 20 13:03:39 MDT 2006


I've received several notifications regarding the following
vulnerability in the past hour. Is there a patch or workaround
available?

----

The Grid Security Vulnerability Group (GSVG) and the Operational
Security Coordination Team (OSCT) have been made aware this morning of a
security flaw affecting Torque/OpenPBS, which was initially published on
BugTraq on Wed, 18 Oct 2006 23:45:

http://csirt.fe.up.pt/docs/TORQUE-audit.pdf

The vulnerability is being handled by GSVG (bug #20883). It has been
confirmed and has been rated EXTREMELY CRITICAL.

----

Thanks,

Jason Allen




More information about the torqueusers mailing list