ByteOS Network

Vulnerability Details :

CVE-2014-3684

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-30 Oct, 2014 | 14:00

Updated At-06 Aug, 2024 | 10:50

The tm_adopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the process also owns the adopted session id, which allows remote authenticated users to kill arbitrary processes via a crafted executable.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:redhat

Assigner Org ID:53f830b8-0a3f-465b-8143-3b8a9948e749

Published At:30 Oct, 2014 | 14:00

Updated At:06 Aug, 2024 | 10:50

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html	vendor-advisory x_refsource_FEDORA
http://openwall.com/lists/oss-security/2014/10/02/45	mailing-list x_refsource_MLIST
http://advisories.mageia.org/MGASA-2014-0408.html	x_refsource_CONFIRM
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html	vendor-advisory x_refsource_FEDORA
http://secunia.com/advisories/61960	third-party-advisory x_refsource_SECUNIA
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html	vendor-advisory x_refsource_FEDORA
http://www.debian.org/security/2014/dsa-3058	vendor-advisory x_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=MDVSA-2015:124	vendor-advisory x_refsource_MANDRIVA
http://openwall.com/lists/oss-security/2014/10/02/44	mailing-list x_refsource_MLIST
http://secunia.com/advisories/61350	third-party-advisory x_refsource_SECUNIA

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://openwall.com/lists/oss-security/2014/10/02/45

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://advisories.mageia.org/MGASA-2014-0408.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://secunia.com/advisories/61960

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.debian.org/security/2014/dsa-3058

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:124

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://openwall.com/lists/oss-security/2014/10/02/44

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://secunia.com/advisories/61350

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html	vendor-advisory x_refsource_FEDORA x_transferred
http://openwall.com/lists/oss-security/2014/10/02/45	mailing-list x_refsource_MLIST x_transferred
http://advisories.mageia.org/MGASA-2014-0408.html	x_refsource_CONFIRM x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html	vendor-advisory x_refsource_FEDORA x_transferred
http://secunia.com/advisories/61960	third-party-advisory x_refsource_SECUNIA x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.debian.org/security/2014/dsa-3058	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2015:124	vendor-advisory x_refsource_MANDRIVA x_transferred
http://openwall.com/lists/oss-security/2014/10/02/44	mailing-list x_refsource_MLIST x_transferred
http://secunia.com/advisories/61350	third-party-advisory x_refsource_SECUNIA x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://openwall.com/lists/oss-security/2014/10/02/45

Resource:

mailing-list

x_refsource_MLIST

x_transferred

Hyperlink: http://advisories.mageia.org/MGASA-2014-0408.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://secunia.com/advisories/61960

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.debian.org/security/2014/dsa-3058

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2015:124

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://openwall.com/lists/oss-security/2014/10/02/44

Resource:

mailing-list

x_refsource_MLIST

x_transferred

Hyperlink: http://secunia.com/advisories/61350

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:secalert@redhat.com

Published At:30 Oct, 2014 | 14:55

Updated At:12 Apr, 2025 | 10:46

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	6.8	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:C

Type: Primary

Version: 2.0

Base score: 6.8

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:N/I:N/A:C

CPE Matches

adaptivecomputing>>torque_resource_manager>>4.2.3

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.3:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.3.1

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.3.1:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.4

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.4:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.4.1

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.4.1:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.5

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.5:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.6

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.6:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.6.1

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.6.1:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.7

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.7:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.8

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.8:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>4.2.9

cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.9:*:*:*:*:*:*:*

adaptivecomputing>>torque_resource_manager>>5.0.0-1_43d8f09a

cpe:2.3:a:adaptivecomputing:torque_resource_manager:5.0.0-1_43d8f09a:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-264	Primary	nvd@nist.gov

CWE ID: CWE-264

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://advisories.mageia.org/MGASA-2014-0408.html	secalert@redhat.com	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html	secalert@redhat.com	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html	secalert@redhat.com	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html	secalert@redhat.com	N/A
http://openwall.com/lists/oss-security/2014/10/02/44	secalert@redhat.com	N/A
http://openwall.com/lists/oss-security/2014/10/02/45	secalert@redhat.com	N/A
http://secunia.com/advisories/61350	secalert@redhat.com	N/A
http://secunia.com/advisories/61960	secalert@redhat.com	N/A
http://www.debian.org/security/2014/dsa-3058	secalert@redhat.com	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2015:124	secalert@redhat.com	N/A
http://advisories.mageia.org/MGASA-2014-0408.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159183.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159201.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159259.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://openwall.com/lists/oss-security/2014/10/02/44	af854a3a-2127-422b-91ae-364da2661108	N/A
http://openwall.com/lists/oss-security/2014/10/02/45	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/61350	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/61960	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.debian.org/security/2014/dsa-3058	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2015:124	af854a3a-2127-422b-91ae-364da2661108	N/A