CVE-2009-5136
published 2013-10-11CVE-2009-5136: The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which…
medium4CVSS 3.1
AVNACLAuSCNINAP
The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service (condor_startd exit) via a crafted job.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| condor_project | condor | <= 7.4.1 | — |
| condor_project | condor | — | — |
| debian | condor | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |
| redhat | enterprise_mrg | — | — |