The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service (condor_startd exit) via a crafted job.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2013-10-11 15:55
Updated : 2021-07-15 12:16
NVD link : CVE-2009-5136
Mitre link : CVE-2009-5136
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
redhat
- enterprise_mrg
condor_project
- condor