Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00070.html | Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00088.html | Third Party Advisory |
https://github.com/hpcng/singularity/security/advisories/GHSA-jv9c-w74q-6762 | Mitigation Third Party Advisory |
https://medium.com/sylabs | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-09-16T17:47:17
Updated: 2020-09-25T14:06:19
Reserved: 2020-08-31T00:00:00
Link: CVE-2020-25040
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-09-16T18:15:13.547
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-25040
JSON object: View
Redhat Information
No data.
CWE