11 matches found
Ubuntu 18.04 ESM : Singularity vulnerabilities (USN-4840-1)
The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4840-1 advisory. It was discovered that Singularity incorrectly handled certain inputs. An attacker could possibly use this issue to obtain sensitive information...
Ubuntu: Security Advisory (USN-4840-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2019:0095-1 Security update for singularity
This update for singularity to version 2.6.1 fixes the following issues: Security issues fixed: - CVE-2018-19295: Mount points are not mounted with shared mount propagation by default anymore, as this may result in privilege escalation boo1111411. - CVE-2018-12021: Fixed a incorrect access contro...
openSUSE Security Update : singularity (openSUSE-2019-9)
This update for singularity to version 2.6.1 fixes the following issues : Security issues fixed : - CVE-2018-19295: Fixed a local root exploit, related to joining arbitrary mount namespaces boo1111411. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
openSUSE: Security Advisory for singularity (openSUSE-SU-2019:0009-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for singularity (important)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2019:0009-1 Rating: important References: 1111411 Cross-References: CVE-2018-19295 Affected Products: openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes one vulnerability is now available...
CVE-2018-19295
Sylabs Singularity 2.4 to 2.6 allows local users to conduct Improper Input Validation attacks...
CVE-2018-19295
Sylabs Singularity 2.4 to 2.6 allows local users to conduct Improper Input Validation attacks...
UBUNTU-CVE-2018-19295
Sylabs Singularity 2.4 to 2.6 allows local users to conduct Improper Input Validation attacks...
CVE-2018-19295
Sylabs Singularity 2.4 to 2.6 allows local users to conduct Improper Input Validation attacks...
CVE-2018-19295
CVE-2018-19295 affects Sylabs Singularity 2.4–2.6. The issue is tied to improper handling of mount namespaces, enabling local users to escalate privileges due to how mount points were joined or propagated. Public records in OSV/USN/SUSE advisories indicate a fix in Singularity 2.6.1 (openSUSE/SUS...