1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1104929: fixed in slurm-wlm 24.11.5-1

    From Ivo De Decker@21:1/5 to Debian FTP Masters on Wed Jun 11 13:30:01 2025
    Hi,

    On Tue, May 20, 2025 at 09:34:28PM +0000, Debian FTP Masters wrote:
    Changes:
    slurm-wlm (24.11.5-1) unstable; urgency=medium
    .
    * New upstream release fix CVE-2025-4390 (Closes: #1104929)

    Are you planning to get this fix into testing/trixie? A new upstream release might not be appropriate during the freeze. Maybe a targeted fix should be considered. If you think this version is appropriate, it will at least need a binary upload for slurm-wlm-contrib on amd64 to be able to migrate. An unblock by the release team will be needed in either case.

    Apart from that, you might want to consider fixing this issue in stable as well.

    Thanks,

    Ivo

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Gennaro Oliva@21:1/5 to Ivo De Decker on Wed Jun 11 14:30:01 2025
    Hi Ivo,
    Thank you for your email.

    Unfortunately, I am short on time at the moment. I attempted to backport
    the patch, but it is not as straightforward as simply cherry-picking the commit. It would be preferable to have the new version included in
    Trixie, if possible.

    Should I file a bug to request the release team to consider including
    the new version in Trixie?

    Best regards,
    --
    Gennaro Oliva

    On Wed, Jun 11, 2025 at 11:25:09AM +0000, Ivo De Decker wrote:
    Hi,

    On Tue, May 20, 2025 at 09:34:28PM +0000, Debian FTP Masters wrote:
    Changes:
    slurm-wlm (24.11.5-1) unstable; urgency=medium
    .
    * New upstream release fix CVE-2025-4390 (Closes: #1104929)

    Are you planning to get this fix into testing/trixie? A new upstream release might not be appropriate during the freeze. Maybe a targeted fix should be considered. If you think this version is appropriate, it will at least need a binary upload for slurm-wlm-contrib on amd64 to be able to migrate. An unblock
    by the release team will be needed in either case.

    Apart from that, you might want to consider fixing this issue in stable as well.

    Thanks,

    Ivo



    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Ivo De Decker@21:1/5 to Gennaro Oliva on Wed Jun 11 15:00:01 2025
    Hi,

    On Wed, Jun 11, 2025 at 02:24:56PM +0200, Gennaro Oliva wrote:
    Hi Ivo,
    Thank you for your email.

    Unfortunately, I am short on time at the moment. I attempted to backport
    the patch, but it is not as straightforward as simply cherry-picking the commit. It would be preferable to have the new version included in
    Trixie, if possible.

    Should I file a bug to request the release team to consider including
    the new version in Trixie?

    Well, without a binary upload for slurm-wlm-contrib, slurm-wlm wouldn't be
    able to migrate, even if both of them were unblocked. It seems last time
    Adrian Bunk (Cc'ed) did the binary upload.

    It would be possible to remove slurm-wlm-contrib from testing to let slurm-wlm migrate, but I assume that's not what you want.

    That said, you certainly can file an unblock request explaining your view on this.

    Thanks!

    Ivo

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)