Lucene search
SuseOPENSUSE-SU-2021:0810-1HistoryMay 30, 2021 - 12:00 a.m.
Security update for singularity (moderate)
2021-05-3000:00:00
lists.opensuse.org
10
singularity update
version 3.7.3
cve-2021-29136
EPSS
0.001
Percentile
17.2%
An update that fixes one vulnerability is now available.
Description:
This update for singularity fixes the following issues:
singularity was updated to version 3.7.3:
- Fix for CVE-2021-29136: A dependency used to extract docker/OCI image
layers can be tricked into modifying host files by creating a malicious
layer that has a symlink with the name “.” (or “/”), when running as
root.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Backports SLE-15-SP2:
zypper in -t patch openSUSE-2021-810=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Backports SLE | 15-SP2 | aarch64 | - opensuse backports sle | < 15-SP2 (aarch64 s390x x86_64): | - openSUSE Backports SLE-15-SP2 (aarch64 s390x x86_64):.aarch64.rpm |
| openSUSE Backports SLE | 15-SP2 | s390x | - opensuse backports sle | < 15-SP2 (aarch64 s390x x86_64): | - openSUSE Backports SLE-15-SP2 (aarch64 s390x x86_64):.s390x.rpm |
| openSUSE Backports SLE | 15-SP2 | x86_64 | - opensuse backports sle | < 15-SP2 (aarch64 s390x x86_64): | - openSUSE Backports SLE-15-SP2 (aarch64 s390x x86_64):.x86_64.rpm |
Related
alpinelinux
alpinelinux
CVE-2021-29136
2021-04-06 16:15:16
nessus
nessus
SUSE SLED15 / SLES15 Security Update : umoci (SUSE-SU-2021:1863-2)
2021-07-27 00:00:00
openSUSE 15 Security Update : umoci (openSUSE-SU-2021:1863-1)
2021-07-28 00:00:00
SUSE SLES15 Security Update : umoci (SUSE-SU-2021:1116-1)
2021-04-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:1863-2)
2021-07-28 00:00:00
openSUSE: Security Advisory for umoci (openSUSE-SU-2021:1863-1)
2021-07-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1863-1)
2021-06-09 00:00:00
cvelist
cvelist
CVE-2021-29136
2021-04-06 15:57:49
suse
suse
Security update for umoci (important)
2021-06-07 00:00:00
Security update for umoci (important)
2021-04-13 00:00:00
Security update for umoci (important)
2021-07-27 00:00:00
prion
prion
Design/Logic Flaw
2021-04-06 16:15:00
debiancve
debiancve
CVE-2021-29136
2021-04-06 16:15:16
github
github
Improper input validation in umoci
2022-02-15 01:17:37
osv
osv
CVE-2021-29136
2021-04-06 16:15:16
Improper input validation in umoci in github.com/opencontainers/umoci
2024-08-21 15:29:02
Improper input validation in umoci
2022-02-15 01:17:37
redhatcve
redhatcve
CVE-2021-29136
2022-05-20 22:47:39
cve
cve
CVE-2021-29136
2021-04-06 16:15:16
ubuntucve
ubuntucve
CVE-2021-29136
2021-04-06 00:00:00
veracode
veracode
Directory Traversal
2021-04-09 19:42:14
nvd
nvd
CVE-2021-29136
2021-04-06 16:15:16
mageia
mageia
Updated singularity packages fix security vulnerability
2022-01-06 01:45:33