Lucene search
+L

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.3 views

SUSE CVE-2020-25040

Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039...

6.2CVSS7.1AI score0.0204EPSS
Exploits0References5
OSV
OSV
added 2020/09/25 10:22 a.m.9 views

OPENSUSE-SU-2020:1529-1 Security update for singularity

This update for singularity fixes the following issues: New version 3.6.3, addresses the following security issues: - CVE-2020-25039, boo1176705 When a Singularity action command run, shell, exec is run with the fakeroot or user namespace option, Singularity will extract a container image to a...

8.8CVSS8.7AI score0.0204EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/25 12:0 a.m.39 views

Security update for singularity (moderate)

openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2020:1529-1 Rating: moderate References: 1176705 1176707 Cross-References: CVE-2020-25039 CVE-2020-25040 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes two vulnerabilities is now availabl...

8.8CVSS8.5AI score0.0204EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/09/22 12:0 a.m.14 views

openSUSE: Security Advisory for singularity (openSUSE-SU-2020:1497-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.4AI score0.0204EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/22 12:0 a.m.27 views

openSUSE Security Update : singularity (openSUSE-2020-1497)

This update for singularity fixes the following issues : New version 3.6.3, addresses the following security issues : - CVE-2020-25039, boo1176705 When a Singularity action command run, shell, exec is run with the fakeroot or user namespace option, Singularity will extract a container image to a...

8.8CVSS8.2AI score0.0204EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/21 12:0 a.m.64 views

Security update for singularity (moderate)

openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2020:1497-1 Rating: moderate References: 1176705 1176707 Cross-References: CVE-2020-25039 CVE-2020-25040 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 An update that fixes two vulnerabilities is now...

8.8CVSS8.5AI score0.0204EPSS
Exploits0References2
CVE
CVE
added 2020/09/16 5:47 p.m.158 views

CVE-2020-25040

CVE-2020-25040 affects Sylabs Singularity prior to 3.6.3, with insecure permissions on temporary directories during container build operations, enabling a logged-in user to read image contents and potentially inject content if world-writable files exist. Public advisories (openSUSE/SLE updates) s...

8.8CVSS8.1AI score0.0204EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder