Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control on systems supporting overlay file system. When using the overlay option, a malicious user may access sensitive information by exploiting a few specific Singularity features.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2019/05/16/1 | |
https://github.com/singularityware/singularity/releases/tag/2.5.2 | Release Notes Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-07-05T18:00:00
Updated: 2019-05-16T11:06:05
Reserved: 2018-06-07T00:00:00
Link: CVE-2018-12021
JSON object: View
NVD Information
Status : Modified
Published: 2018-07-05T18:29:00.297
Modified: 2019-05-16T12:29:00.260
Link: CVE-2018-12021
JSON object: View
Redhat Information
No data.
CWE