434 matches found
Fedora: Security Advisory for singularity (FEDORA-2020-0fbf0db920)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for singularity (FEDORA-2020-098cba75fe)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 31 Update: singularity-3.6.4-1.fc31
Singularity provides functionality to make portable containers that can be used across host environments...
[SECURITY] Fedora 32 Update: singularity-3.6.4-1.fc32
Singularity provides functionality to make portable containers that can be used across host environments...
[SECURITY] Fedora 33 Update: singularity-3.6.4-1.fc33
Singularity provides functionality to make portable containers that can be used across host environments...
Path Traversal
github.com/hpcng/singularity is vulnerable to path traversal. The vulnerability exists due to lack of path sanitization within unsquashfs, leading to unauthorized file creation/overwriting on the host filesystem during the extraction of a malicious squashfs filesystem...
CVE-2020-15229
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
CVE-2020-15229
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
CVE-2020-15229
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
Path traversal
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
CVE-2020-15229 Path traversal and files overwrite with unsquashfs
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
CVE-2020-15229
CVE-2020-15229 affects Singularity 3.1.1–3.6.3 due to insecure handling of path traversal and missing path sanitization in unsquashfs. When extracting a crafted squashfs filesystem, unprivileged execution (–without-suid or allow setuid = no) can overwrite or create files on the host, with the ext...
CVE-2020-15229
Removed by vendor...
CVE-2020-15229
Singularity an open source container platform from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a...
Fedora 31 : singularity (2020-c1c4cb96d3)
Upgrade to upstream 3.6.3. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...
Fedora 32 : singularity (2020-22ab822e3b)
Upgrade to upstream 3.6.3. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...
Fedora: Security Advisory for singularity (FEDORA-2020-8111ee0d86)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for singularity (FEDORA-2020-22ab822e3b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for singularity (FEDORA-2020-c1c4cb96d3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 31 Update: singularity-3.6.3-1.fc31
Singularity provides functionality to make portable containers that can be used across host environments...