Difference between revisions of "Mutagen Astronomy vulnerability"
From ScientificComputing
| Line 11: | Line 11: | ||
We apologize for any inconvenience this may cause. | We apologize for any inconvenience this may cause. | ||
| + | ---- | ||
| + | ''Please watch this space for updates before and during the maintenance.'' | ||
| + | ==Updates== | ||
| − | -- | + | ;'''2018-10-12 13:05''' |
| − | + | : All Euler login nodes are patched and therefore the commands listed above work again. Only a subset of all compute nodes is patched yet. If you need to use one of the listed commands within a batch job, then you can use the bsub option '''-R suid''' and this will assure that your job is dispatched to a patched compute node. | |
| − | '' | ||
Revision as of 11:06, 12 October 2018
Recently the security vulnerability Mutagen Astronomy (CVE-2018-14634) was published.
Due to security precautions the following commands cannot be used at the moment
- newgrp
- remote_tmpdir
- screen
- ssh-agent
- ssh-keysign
We apologize for any inconvenience this may cause.
Please watch this space for updates before and during the maintenance.
Updates
- 2018-10-12 13:05
- All Euler login nodes are patched and therefore the commands listed above work again. Only a subset of all compute nodes is patched yet. If you need to use one of the listed commands within a batch job, then you can use the bsub option -R suid and this will assure that your job is dispatched to a patched compute node.
