-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 01 Aug 2021 21:36:09 +0200 Source: condor Binary: htcondor htcondor-dev htcondor-doc htcondor-dbg libclassad-dev libclassad7 condor condor-doc condor-dev condor-dbg Architecture: source Version: 8.4.11~dfsg.1-1+deb9u1 Distribution: stretch-security Urgency: high Maintainer: HTCondor Developers <condor-debian@cs.wisc.edu> Changed-By: Markus Koschany <apo@debian.org> Description: condor - transitional dummy package condor-dbg - transitional dummy package condor-dev - transitional dummy package condor-doc - transitional dummy package htcondor - distributed workload management system htcondor-dbg - distributed workload management system - debugging symbols htcondor-dev - distributed workload management system - development files htcondor-doc - distributed workload management system - documentation libclassad-dev - HTCondor classads expression language - development library libclassad7 - HTCondor classads expression language - runtime library Changes: condor (8.4.11~dfsg.1-1+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2019-18823: HTCondor has Incorrect Access Control. It is possible to use a different authentication method to submit a job than the administrator has specified. If the administrator has configured the READ or WRITE methods to include CLAIMTOBE, then it is possible to impersonate another user to the condor_schedd. (For example to submit or remove jobs) Checksums-Sha1: 968ca2315fde67622db6524145500c871585584f 3239 condor_8.4.11~dfsg.1-1+deb9u1.dsc db4c6bd7c02a768d4a6fcf8f9d01c6b4a9f37cad 10183582 condor_8.4.11~dfsg.1.orig.tar.gz c6bee51d26348b8236ca9b5623b3b99b8a893a36 79004 condor_8.4.11~dfsg.1-1+deb9u1.debian.tar.xz 20fa0e9192cc793a6beddbe222bb1b1bde78eb02 18604 condor_8.4.11~dfsg.1-1+deb9u1_source.buildinfo Checksums-Sha256: 93619a9209424aad1998da5b88b95de0683e66389f6f412aad63360c32d1a7bb 3239 condor_8.4.11~dfsg.1-1+deb9u1.dsc 1e1c2edee9dfbc34da3b64680b5ec12fe5540600628a132e743b13cc6ae50e29 10183582 condor_8.4.11~dfsg.1.orig.tar.gz 2a00d764789eec8385dfbe54dc37ad03916cf0a9316c6b3c7054c175cce25bc9 79004 condor_8.4.11~dfsg.1-1+deb9u1.debian.tar.xz ea0332617d4a77f36dc40d8661efa2f16fb7d08327e9ad8c827860127ae50db9 18604 condor_8.4.11~dfsg.1-1+deb9u1_source.buildinfo Files: 72c74692c7fa96220f24f471da21e1ea 3239 science extra condor_8.4.11~dfsg.1-1+deb9u1.dsc 80efde5c9ad32980a370051a8a80ccd1 10183582 science extra condor_8.4.11~dfsg.1.orig.tar.gz 42963c9e8b124f7806d69914d2e37d5c 79004 science extra condor_8.4.11~dfsg.1-1+deb9u1.debian.tar.xz 91f9489bc6d2915f727886d4b7d4bb50 18604 science extra condor_8.4.11~dfsg.1-1+deb9u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmEHBQ1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkiZEQAK35DfHxpv/mdwouuqVXYHnHh0Ymdw4ERc0D SLCxtE5GIm70+62MpxOhS7gJOlprmwsuYPYiWpKmBHvtnqNnjI2SKQzaMtNHKM5W WM38tKhjkfCtFOEcriKG3cFZFkygwAJZbUNT+Twy2eIqj8/ht9EHBf55/rYlnYKv WUKX0HsZlJ6ci7A4YujOrMCCjU8h5KfsEHb5ijMQ+n/VCEtszhP0pf/EXABXdwyJ JRBgeOWwWEHOg3WFX/or0EaLPuWIgkUpXC+58qLcv6MP++a714C8wD79re822cKB iw6hQ80gUbVh5RhvoBZFqItBKKc+z84f1sTX41itOv00SZ+WN7ToF2v54DOacJlP FwmNYBDGKh0LKMoDKpqEn3QJ/qRnCtdE/VEnF1u9zJDD0kAL2t6oTEbMTyi6fVVG xGph14OTfurRad7VdQV4bOub7t7yU1CoGWzb1+k/TI1QbyRoPbEVdrpG99TKLOgR RG0BnjVSGWnVDrp2bCTGxnfC/evSg31NE6WESzrNuUSH4Ryx+znEZQKENs/YSJGa XWYsNF1iqAszShxZeAXiJFHPFJ+CXUR8TgnZuoCRpm2W+9kyQ0m4R9zu1OFpQW8J HIS49kVkgs3Ts0H/EQol8r/b0vErFzjKlhQRYYriMIA59gX3mUSZ7K2VlPz5ZR/9 iNkGT1TV =8nzG -----END PGP SIGNATURE-----
