-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 29 Jul 2011 18:37:00 +0200 Source: torque Binary: torque-common torque-server torque-pam torque-scheduler torque-client torque-mom torque-client-x11 libtorque2 libtorque2-dev Architecture: armel Version: 2.4.8+dfsg-9squeeze1 Distribution: squeeze-security Urgency: low Maintainer: armel Build Daemon (arnold) Changed-By: Jordi Mallach Description: libtorque2 - shared library for Torque client and server libtorque2-dev - header files for libtorque2 torque-client - command line interface to Torque server torque-client-x11 - GUI for torque clients torque-common - Torque Queueing System shared files torque-mom - job execution engine for Torque batch system torque-pam - PAM module for PBS MOM nodes torque-scheduler - scheduler part of Torque torque-server - PBS-derived batch processing server Changes: torque (2.4.8+dfsg-9squeeze1) stable-security; urgency=low . * [CVE_2011_2193]: Fix two potential buffer overflows: jobid length and hostname length weren't properly checked, and these both allow segfaults/buffer overflow attacks within the code. * Steal an additional potential buffer overflow fix from upstream SVN: - src/resmom/checkpoint.c (mom_checkpoint_recover): Use strncpy and strncat instead of strcpy and strcat. * Update Vcs-* fields to point to the new squeeze branch. Checksums-Sha1: 18d46be1dfef1ab09f3a87a296525b1c76567ed5 61108 torque-common_2.4.8+dfsg-9squeeze1_armel.deb bb35b97db7227930ebc38949f4d2892dd4d3de2b 174994 torque-server_2.4.8+dfsg-9squeeze1_armel.deb 805e182fafefd4d5f5781de7b2b24d87fc6665ec 33948 torque-pam_2.4.8+dfsg-9squeeze1_armel.deb 9a354687309084ca1e7e205dc99679c4622b543b 91130 torque-scheduler_2.4.8+dfsg-9squeeze1_armel.deb 465cf5fb95a36568770ca28a80bbdb8d72850207 382636 torque-client_2.4.8+dfsg-9squeeze1_armel.deb f3969459d22b05726b2c5b8e5b6f26b057c5bfdf 188470 torque-mom_2.4.8+dfsg-9squeeze1_armel.deb 3e26aceccb984765e4517222d7825d29b751c9ec 634106 torque-client-x11_2.4.8+dfsg-9squeeze1_armel.deb 616e7b1bd834078bec3ebfb8acb326f402dfee13 106808 libtorque2_2.4.8+dfsg-9squeeze1_armel.deb d21e146321e30a523d53cde4318bf9a3822ab956 44374 libtorque2-dev_2.4.8+dfsg-9squeeze1_armel.deb Checksums-Sha256: ccd18bbfa936078cea28b49ac55cba5d3cfe45f13c9521c2d9d2e1eee8308fce 61108 torque-common_2.4.8+dfsg-9squeeze1_armel.deb e07c394ab5dce3e9d64d48b1b1fcd87bd2db21fe6632cdfb41bd4050b5085078 174994 torque-server_2.4.8+dfsg-9squeeze1_armel.deb b132ee0cfe2a2c3867b583e4ccdf538f05193dae217244fed2e02f10949ac5e5 33948 torque-pam_2.4.8+dfsg-9squeeze1_armel.deb b6cb54103321e30f1fffaf89a37e577698e1f38238cf0dea80d4510a01fd99ba 91130 torque-scheduler_2.4.8+dfsg-9squeeze1_armel.deb 92df4f600b20d7f82ef8007d5596b234b8f419193ae9c098d3109b4895c856f7 382636 torque-client_2.4.8+dfsg-9squeeze1_armel.deb 88100735b4b1fc361ad0fcf2488fb444948becbf58d35b3ae0b13052a00be8ac 188470 torque-mom_2.4.8+dfsg-9squeeze1_armel.deb 44a7cc0fc55b4e1109a85907f165184cd0cc4587739245acb55663c24d53e3b2 634106 torque-client-x11_2.4.8+dfsg-9squeeze1_armel.deb 4aad0e2908814be8cb23b4306ab6a03f52836633872b107120fb3d9c7f2de0ef 106808 libtorque2_2.4.8+dfsg-9squeeze1_armel.deb b0973aa36564a0ffed5447e2168d72a8028e6ecc6a966964f3392359b022d60e 44374 libtorque2-dev_2.4.8+dfsg-9squeeze1_armel.deb Files: c043accde15a4ed3e148977d23b99404 61108 utils optional torque-common_2.4.8+dfsg-9squeeze1_armel.deb a63804fc7b6d4cbe19ac7f76db7e0076 174994 utils optional torque-server_2.4.8+dfsg-9squeeze1_armel.deb 088692881de801adbed6dd3802d0c621 33948 utils optional torque-pam_2.4.8+dfsg-9squeeze1_armel.deb 9c5bf1b4b6f6ec67f6eac01ec67cda79 91130 net optional torque-scheduler_2.4.8+dfsg-9squeeze1_armel.deb ad2f84e6eebd9f4a52cd2a1392bbac85 382636 utils optional torque-client_2.4.8+dfsg-9squeeze1_armel.deb b7d3586c1adb3456a5ba71152f8db98d 188470 utils optional torque-mom_2.4.8+dfsg-9squeeze1_armel.deb cef9eea76b8615b4f76e9ca8be52c6fc 634106 x11 optional torque-client-x11_2.4.8+dfsg-9squeeze1_armel.deb 5bc0cbb49f8b00e32534cda2522b56c5 106808 libs optional libtorque2_2.4.8+dfsg-9squeeze1_armel.deb baf54aa85149e02a0e0a802228822750 44374 libdevel optional libtorque2-dev_2.4.8+dfsg-9squeeze1_armel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBAgAGBQJON+ZDAAoJEJvVjrQ+qbowPZgP/iCjPZkzld1ZU0qMXl0OV1tM diTtlsdkaRLDqBgL2zqBOr6wiTl9NpvoAFVYRKkVzdYbQLYACMHRx7erMDt3LnqW ktrY+bv2lPr7qblBi8MZqHCIOzsWMjaIpcc9xOWv2CSvJURRoQXhr6rR9W1rJm4a EtH/L4aKjdTV8Z1Tl4Y9WPliaczvB7eJUiyT9vX+IiMZHcIpybkb+sT9dlkU6df5 UGbqIFUvIh0GA8bhvxS/dhFZfwJBN8ccjOyCiYLih2HUN0RSIi18KVj6x272kbiC xiO4I1q5Yx9dWpGquuZAPhceEP8mmvzagW+1r5DZtWLc+gdzeQ2me4rDMEqjSrJv tC7X4Sva65eU3Po23FYQFrfIPtJbULq9sepHJufbQGseaZm53gb5/bShw8SfQ+fQ daaHHqqWG10ZEKtrrF83FIcPGBWRYMsM1Jy4k5ynQOUbznuUZZswpfccaMmtIXE/ vguCkwnKZOpB0pMM2y7XnlXvgYKCwKH22s7O6xwIr/l0Wau5HZ44UniZNP6ss4YL gM/TSmyZ3UGXCXhwCkU4aTcbosqfleDEKZ/HnhrxxNzMoalpHxrluOw2a+cXUnrR sHptw8uoqjxaQ+8MIydwo/WFKC7tEfsotxrhF+B/C5MnoW7sXpej+3WtZeaXmXYz zQx88IprKIiro04t5mEv =VN1a -----END PGP SIGNATURE-----