431 matches found
Use Of Incorrectly-Resolved Name Or Reference
github.com/sylabs/singularity is vulnerable to Use of Incorrectly-Resolved Name or Reference. The vulnerability is due to improper handling of LSM label write operations during container execution, which allows an attacker to redirect mounts e.g., /proc and bypass security restrictions using a...
ZERO_SPLOIT_USB_v6
ZEROSPLOITUSB v6.0: The Singularity Edition The Si...
Fedora: Security Advisory (FEDORA-2025-3ff2f4efe3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-d3cd3e7cf0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 42 Update: singularity-ce-4.3.6-1.fc42
SingularityCE is the Community Edition of Singularity, an open source container platform designed to be simple, fast, and secure...
[SECURITY] Fedora 43 Update: singularity-ce-4.3.6-1.fc43
SingularityCE is the Community Edition of Singularity, an open source container platform designed to be simple, fast, and secure...
Fedora 42 : singularity-ce (2025-3ff2f4efe3)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-3ff2f4efe3 advisory. Upgrade to 4.3.6 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 43 : singularity-ce (2025-d3cd3e7cf0)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d3cd3e7cf0 advisory. Upgrade to 4.3.6 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora: Security Advisory (FEDORA-2025-5ad0214a85)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-54d78b9fed)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2025-64750
SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...
[SECURITY] Fedora 42 Update: singularity-ce-4.3.5-1.fc42
SingularityCE is the Community Edition of Singularity, an open source container platform designed to be simple, fast, and secure...
[SECURITY] Fedora 43 Update: singularity-ce-4.3.5-1.fc43
SingularityCE is the Community Edition of Singularity, an open source container platform designed to be simple, fast, and secure...
Fedora 42 : singularity-ce (2025-54d78b9fed)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-54d78b9fed advisory. Upgrade to 4.3.5 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 43 : singularity-ce (2025-5ad0214a85)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-5ad0214a85 advisory. Upgrade to 4.3.5 upstream version. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
GO-2025-4177 Singularity ineffectively applies of selinux / apparmor LSM process labels in github.com/sylabs/singularity
Singularity ineffectively applies of selinux / apparmor LSM process labels in github.com/sylabs/singularity. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...
EUVD-2025-200289
Singluarity ineffectively applies selinux / apparmor LSM process labels...
CVE-2025-64750 Singluarity ineffectively applies of selinux / apparmor LSM process labels
SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...
CVE-2025-64750 Singluarity ineffectively applies of selinux / apparmor LSM process labels
SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...
CVE-2025-64750
SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...