7 matches found
EUVD-2023-0392
Malicious code in bioql PyPI...
SUSE CVE-2022-23538
github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services SCS Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library service may be incorrectl...
GHSA-7P8M-22H4-9PJ7 scs-library-client may leak user credentials to third-party service via HTTP redirect
Impact When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library service may be incorrectly leaked to an S3 backing storage provider. This occurs in a specific flow, where the library service redirects the...
CVE-2022-23538
github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services SCS Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library service may be incorrectl...
CVE-2022-23538
CVE-2022-23538 affects github.com/sylabs/scs-library-client (Go client for the Singularity Container Services library). The vulnerability occurs during a specific flow where, after authentication, the library service redirects to a backing S3 storage server to perform a multi-part concurrent down...
CVE-2022-23538
github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services SCS Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library service may be incorrectl...
SCS Library Client 安全漏洞
SCS Library Client is a Golang client for Singularity Container Services SCS. A security vulnerability exists in SCS Library Client. An attacker can exploit the vulnerability to perform a multi-part concurrent download...