CVE-2020-25040

Опубликовано: 16 сент. 2020

Источник: debian

EPSS Низкий

Описание

Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
singularity-container	fixed	3.9.4+ds2-1	experimental	package
singularity-container	fixed	3.9.5+ds1-2		package

Примечания

https://github.com/hpcng/singularity/security/advisories/GHSA-jv9c-w74q-6762

EPSS

Процентиль: 73%

0.00744

Низкий

Связанные уязвимости

CVE-2020-25040

CVSS3: 8.8

ubuntu

больше 5 лет назад

Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039.

CVE-2020-25040

CVSS3: 8.8

nvd

больше 5 лет назад

Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039.

GHSA-jv9c-w74q-6762

CVSS3: 8.8

github

больше 4 лет назад

Insecure permissions on build temporary rootfs in Singularity

openSUSE-SU-2020:1497-1

suse-cvrf

больше 5 лет назад

Security update for singularity

EPSS

Процентиль: 73%

0.00744

Низкий