CVE-2020-27746/slurm-llnl: stretch not-affected

author: Sylvain Beucler <beuc@beuc.net> 2022-01-12 17:13:28 +0100
committer: Sylvain Beucler <beuc@beuc.net> 2022-01-12 17:14:17 +0100
commit: b515bdb1278f4e9cbf6fe9a3fde41099590bbdcc (patch)
tree: 7085865ab77ac17d9a2499f51899ab93bfc6f4a0 /data/CVE/list.2020
parent: f63961bb65c9bc62a93cf6af888b253f755e872b (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index c0b5ad54ea..7a0d599c92 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -8306,11 +8306,12 @@ CVE-2020-27746 (Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive I
 	{DSA-4841-1}
 	- slurm-wlm <not-affected> (Fixed with first upload to Debian with renamed source package)
 	- slurm-llnl <removed> (bug #974722)
-	[stretch] - slurm-llnl <no-dsa> (Minor issue)
+	[stretch] - slurm-llnl <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.schedmd.com/news.php?id=240
 	NOTE: https://lists.schedmd.com/pipermail/slurm-announce/2020/000045.html
 	NOTE: https://github.com/SchedMD/slurm/commit/07309deb45c33e735e191faf9dd31cca1054a15c
 	NOTE: slurm-wlm/20.02.6-1 changed the source package name and included the fix
+	NOTE: Introduced by: https://github.com/SchedMD/slurm/commit/e3140b7f8d96ced9dc85089caa65dd7c6be396fd (slurm-17-11-0-0rc1)
 CVE-2020-27745 (Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflo ...)
 	{DSA-4841-1}
 	- slurm-wlm <not-affected> (Fixed with first upload to Debian with renamed source package)
author	Sylvain Beucler <beuc@beuc.net>	2022-01-12 17:13:28 +0100
committer	Sylvain Beucler <beuc@beuc.net>	2022-01-12 17:14:17 +0100
commit	b515bdb1278f4e9cbf6fe9a3fde41099590bbdcc (patch)
tree	7085865ab77ac17d9a2499f51899ab93bfc6f4a0 /data/CVE/list.2020
parent	f63961bb65c9bc62a93cf6af888b253f755e872b (diff)