[SECURITY] Fedora 9 Update: condor-7.0.5-1.fc9
updates at fedoraproject.org
updates at fedoraproject.org
Thu Oct 9 21:30:27 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-8733
2008-10-09 04:45:41
--------------------------------------------------------------------------------
Name : condor
Product : Fedora 9
Version : 7.0.5
Release : 1.fc9
URL : http://www.cs.wisc.edu/condor/
Summary : Condor: High Throughput Computing
Description :
Condor is a specialized workload management system for
compute-intensive jobs. Like other full-featured batch systems, Condor
provides a job queueing mechanism, scheduling policy, priority scheme,
resource monitoring, and resource management. Users submit their
serial or parallel jobs to Condor, Condor places them into a queue,
chooses when and where to run the jobs based upon a policy, carefully
monitors their progress, and ultimately informs the user upon
completion.
--------------------------------------------------------------------------------
Update Information:
Security update, fixes security issues rebasing on 7.0.5
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 8 2008 <matt at redhat> - 7.0.5-1
- Rebased on 7.0.5, security update
* Wed Aug 6 2008 <mfarrellee at redhat> - 7.0.4-1
- Updated to 7.0.4 source
- Stopped using condor_configure in install step
* Tue Jun 10 2008 <mfarrellee at redhat> - 7.0.2-1
- Updated to 7.0.2 source
- Updated config, specifically HOSTALLOW_WRITE, for Personal Condor setup
- Added condor_config.generic
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #463987 - CVE-2008-3826 condor: users can run jobs with arbitrary owners
https://bugzilla.redhat.com/show_bug.cgi?id=463987
[ 2 ] Bug #463990 - CVE-2008-3828 condor: buffer overflow in lookup_macro
https://bugzilla.redhat.com/show_bug.cgi?id=463990
[ 3 ] Bug #463995 - CVE-2008-3829 condor: denial of service attack on Schedd via corrupt logfile
https://bugzilla.redhat.com/show_bug.cgi?id=463995
[ 4 ] Bug #463997 - CVE-2008-3830 condor: allow or deny with overlapping netmasks may be ignored
https://bugzilla.redhat.com/show_bug.cgi?id=463997
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update condor' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list