- Vulnerability/
- RHSA-2009:1689
RHSA-2009:1689: Moderate: condor security update
First published: Mon Dec 21 2009(Updated: )
Condor is a specialized workload management system for compute-intensive<br>jobs. It provides a job queuing mechanism, scheduling policy, priority<br>scheme, and resource monitoring and management.<br>A flaw was found in the way Condor managed jobs. This could allow a user<br>that is authorized to submit jobs into Condor to queue a job as if it were<br>submitted by a different local user, potentially leading to unauthorized<br>access to that user's account. (CVE-2009-4133)<br>Note: Condor will not run jobs as root; therefore, this flaw cannot lead to<br>a compromise of the root user account.<br>All Red Hat Enterprise MRG 1.2 users are advised to upgrade to these<br>updated packages, which contain a backported patch to correct this issue.<br>Condor must be restarted for the update to take effect.
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2009:1689