Lucene search
Veracode Vulnerability DatabaseVERACODE:29942HistoryApr 09, 2021 - 7:42 p.m.
Directory Traversal
2021-04-0919:42:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21
directory traversal
container security
symlink traversal
host paths
crafted image
umoci unpack
EPSS
0.001
Percentile
17.2%
Open Container Initiative umoci is vulnerable to directory traversal. It allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when “umoci unpack” or “umoci raw unpack” is used.
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : umoci (SUSE-SU-2021:1863-2)
2021-07-27 00:00:00
openSUSE 15 Security Update : umoci (openSUSE-SU-2021:1863-1)
2021-07-28 00:00:00
SUSE SLES15 Security Update : umoci (SUSE-SU-2021:1116-1)
2021-04-12 00:00:00
alpinelinux
alpinelinux
CVE-2021-29136
2021-04-06 16:15:16
cvelist
cvelist
CVE-2021-29136
2021-04-06 15:57:49
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:1863-2)
2021-07-28 00:00:00
openSUSE: Security Advisory for umoci (openSUSE-SU-2021:1863-1)
2021-07-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1863-1)
2021-06-09 00:00:00
suse
suse
Security update for umoci (important)
2021-06-07 00:00:00
Security update for singularity (moderate)
2021-05-30 00:00:00
Security update for umoci (important)
2021-07-27 00:00:00
prion
prion
Design/Logic Flaw
2021-04-06 16:15:00
debiancve
debiancve
CVE-2021-29136
2021-04-06 16:15:16
github
github
Improper input validation in umoci
2022-02-15 01:17:37
osv
osv
CVE-2021-29136
2021-04-06 16:15:16
Improper input validation in umoci in github.com/opencontainers/umoci
2024-08-21 15:29:02
Improper input validation in umoci
2022-02-15 01:17:37
redhatcve
redhatcve
CVE-2021-29136
2022-05-20 22:47:39
cve
cve
CVE-2021-29136
2021-04-06 16:15:16
ubuntucve
ubuntucve
CVE-2021-29136
2021-04-06 00:00:00
nvd
nvd
CVE-2021-29136
2021-04-06 16:15:16
mageia
mageia
Updated singularity packages fix security vulnerability
2022-01-06 01:45:33