slurm: %post for slurm-testsuite operates as root in user owned directory
CVE-2022-31251
6.5MEDIUM
What is CVE-2022-31251?
A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with control over the slurm user to escalate to root. This issue affects: openSUSE Factory slurm versions prior to 22.05.2-3.3.
Affected Version(s)
openSUSE Factory slurm < 22.05.2-3.3