Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00070.html | Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00088.html | Third Party Advisory |
https://github.com/hpcng/singularity/security/advisories/GHSA-w6v2-qchm-grj7 | Mitigation Third Party Advisory |
https://medium.com/sylabs | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-09-16T17:42:44
Updated: 2020-09-25T14:06:18
Reserved: 2020-08-31T00:00:00
Link: CVE-2020-25039
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-09-16T18:15:13.467
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-25039
JSON object: View
Redhat Information
No data.
CWE