-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 29 Jul 2011 18:37:00 +0200 Source: torque Binary: torque-common torque-server torque-pam torque-scheduler torque-client torque-mom torque-client-x11 libtorque2 libtorque2-dev Architecture: i386 Version: 2.4.8+dfsg-9squeeze1 Distribution: squeeze-security Urgency: low Maintainer: i386 Build Daemon (murphy) Changed-By: Jordi Mallach Description: libtorque2 - shared library for Torque client and server libtorque2-dev - header files for libtorque2 torque-client - command line interface to Torque server torque-client-x11 - GUI for torque clients torque-common - Torque Queueing System shared files torque-mom - job execution engine for Torque batch system torque-pam - PAM module for PBS MOM nodes torque-scheduler - scheduler part of Torque torque-server - PBS-derived batch processing server Changes: torque (2.4.8+dfsg-9squeeze1) stable-security; urgency=low . * [CVE_2011_2193]: Fix two potential buffer overflows: jobid length and hostname length weren't properly checked, and these both allow segfaults/buffer overflow attacks within the code. * Steal an additional potential buffer overflow fix from upstream SVN: - src/resmom/checkpoint.c (mom_checkpoint_recover): Use strncpy and strncat instead of strcpy and strcat. * Update Vcs-* fields to point to the new squeeze branch. Checksums-Sha1: 79c5c81e88b08c439dfacff3cb9c77497f65783e 60970 torque-common_2.4.8+dfsg-9squeeze1_i386.deb 6f2be1b885e56005d3f0e2f0ab0b5d025f45b9ec 169906 torque-server_2.4.8+dfsg-9squeeze1_i386.deb d0cbe660e41c4cefe997800e4f2dfc76235f6037 34010 torque-pam_2.4.8+dfsg-9squeeze1_i386.deb 6cad5d2c0d8235d7dc49f613fcde53592e4bb902 87906 torque-scheduler_2.4.8+dfsg-9squeeze1_i386.deb 015d29eaf118724d9d4c13a25378fff228a09823 385514 torque-client_2.4.8+dfsg-9squeeze1_i386.deb 99211bb5c3bbff09a45ff92ada6942bbd43d7241 179698 torque-mom_2.4.8+dfsg-9squeeze1_i386.deb 893bc584568adf1b4a9d1ae89dfd03baf433506a 636364 torque-client-x11_2.4.8+dfsg-9squeeze1_i386.deb 74bbd664e61c573252937591aefebe881bfc991b 104140 libtorque2_2.4.8+dfsg-9squeeze1_i386.deb 22cac485205e0a67df72ce8b3f30cb6213337600 44286 libtorque2-dev_2.4.8+dfsg-9squeeze1_i386.deb Checksums-Sha256: e21c3909c923d4aa44e2cbc8449302b970edf162ce6c1c5de0a9907e35ac96de 60970 torque-common_2.4.8+dfsg-9squeeze1_i386.deb 590a765470dfa174690a3881d3276095dbf915a4e850875beca2a118856ebd92 169906 torque-server_2.4.8+dfsg-9squeeze1_i386.deb 55909fec256bc78c123a06a820056354c5d093285f3b1e3c560a5fca8b0beccc 34010 torque-pam_2.4.8+dfsg-9squeeze1_i386.deb 3db7ebcfc71a9644c00afdd6a3548ad1f3934cc4e8c85b66c5f4eefa59d75428 87906 torque-scheduler_2.4.8+dfsg-9squeeze1_i386.deb 318789cdcec690e98544344c8128e034537d4d845961bf4ffbdd8985d3d7f36f 385514 torque-client_2.4.8+dfsg-9squeeze1_i386.deb 7b5037c6e1f93a8b7f69950d42377a82526626cd363016776c9e9130a306473d 179698 torque-mom_2.4.8+dfsg-9squeeze1_i386.deb 7ae4e44f35b2a8fd6156c5ad6e39e6bd9bb192925e27bf9b5bfac3b79da6bc76 636364 torque-client-x11_2.4.8+dfsg-9squeeze1_i386.deb 7939a0e34563d56fb2fd3d5b106bf0af7c9a6d4749ab6b593c2725b244c56b3f 104140 libtorque2_2.4.8+dfsg-9squeeze1_i386.deb 30f0b77bd2cc4bb3da88bde2c770120498b25dd26161a68ce21199940989b1cf 44286 libtorque2-dev_2.4.8+dfsg-9squeeze1_i386.deb Files: 57e235e31647af8fa79ef732cad46d94 60970 utils optional torque-common_2.4.8+dfsg-9squeeze1_i386.deb 303d284123c0ad47d58faea86819ddc5 169906 utils optional torque-server_2.4.8+dfsg-9squeeze1_i386.deb 55ba85ae797bc63545179fd3e402684c 34010 utils optional torque-pam_2.4.8+dfsg-9squeeze1_i386.deb 5fe27f04d74a65b2e647e72e163d7af5 87906 net optional torque-scheduler_2.4.8+dfsg-9squeeze1_i386.deb ad149724b6c17ae7e1bf9ff0c7197c7b 385514 utils optional torque-client_2.4.8+dfsg-9squeeze1_i386.deb d1d7fdf090456986b67eca1d46abc3d7 179698 utils optional torque-mom_2.4.8+dfsg-9squeeze1_i386.deb a37459f264c78dbfab666182e5a44733 636364 x11 optional torque-client-x11_2.4.8+dfsg-9squeeze1_i386.deb 455215288671ff86c063bec62807a594 104140 libs optional libtorque2_2.4.8+dfsg-9squeeze1_i386.deb 92bb34f1ea67974adab20c2be5e3685f 44286 libdevel optional libtorque2-dev_2.4.8+dfsg-9squeeze1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJON+FBAAoJELdq5EKse8nBjX8QAOtrRAV1zYCh7jf3yKezbG9A PE5noDibxzjHcG6iIYnXlB9dQ1GYq2+Ty2peeZTRrE4aN8KPEzxTh+FJ91Ng3e9y 33eI9yL4CcQKk78DMsClNrm84aeKfgKCao2afsHBPlIBdPPH1HyCBDUqYmsrvAc0 HF894wRkCg2pv14OJtF6E46YssGS2HOLRKcdZmmo0ClYPz92030F8jLbsaAyKT6V moWlNnmQwcEFf6u5lbDmeI2XIcLGCZGmGa7I6n3ISBRTqBUGGIEPCBSLG3BJKPnP T1BMPYWHAvKErQPgKtUm4ATu2fF9n0X0Xi1NbWvBBpxSToWavKw2pU5JasWvphYh HjLoG5pZMfzEbInhE9orTybaFC6QJu02eCoFEMKiE0DS/ChhlOW/L/sWf4vWW2/z VQq2s/LcqgClrC9mQPO4q8T9edO2UOkqIhoUQ5nZJiLmipb3THZtU8W0x/fHEGmR s3TB4uiqFi++s53m4OG17tGiEhRWCC2q2uT9zRUwk+zoYsO9VtFtKqUZwsrangcM pBEg54Yxx7X2sbbkS+FDoiU8pJrhARLy4TOLx45m85vmBAV7xgUEZs0tnJmz2bN6 QmOkPjTTU0VVyqk6n3W71Q/4XO6zxRwMWW6/jcNMCSbi0AlmqGbOtLc7Yon9vd06 ZuCmMolgSDFzGywdvkEF =6biN -----END PGP SIGNATURE-----