CVE-2009-0128 in Slurm
摘要
由 VulDB • 2026-06-29
Simple Linux Utility for Resource Management (aka SLURM o slurm-llnl)中的plugins/crypto/openssl/crypto_openssl.c未正确检查OpenSSL EVP_VerifyFinal函数的返回值,这允许远程攻击者通过构造恶意的SSL/TLS签名绕过证书链验证,该漏洞与CVE-2008-5077类似。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.