rpm package
opensuse/apptainer&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/apptainer&distro=openSUSE%20Tumbleweed
Vulnerabilities (25)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-38496 | — | < 1.2.1-1.1 | 1.2.1-1.1 | Jul 25, 2023 | Apptainer is an open source container platform. Version 1.2.0-rc.2 introduced an ineffective privilege drop when requesting container network setup, therefore subsequent functions are called with root privileges, the attack surface is rather limited for users but an attacker coul | ||
| CVE-2023-30549 | — | < 1.1.8-1.1 | 1.1.8-1.1 | Apr 25, 2023 | Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer < 1.1.0 and installations that include apptainer-suid < 1.1.8 on older operating systems where that CVE has not been patched. That incl | ||
| CVE-2022-23538 | — | < 1.1.6-1.1 | 1.1.6-1.1 | Jan 17, 2023 | github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services (SCS) Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library servic | ||
| CVE-2022-39237 | — | < 1.1.2-1.1 | 1.1.2-1.1 | Oct 6, 2022 | syslabs/sif is the Singularity Image Format (SIF) reference implementation. In versions prior to 2.8.1the `github.com/sylabs/sif/v2/pkg/integrity` package did not verify that the hash algorithm(s) used are cryptographically secure when verifying digital signatures. A patch is ava | ||
| CVE-2021-44717 | — | < 1.0.1-1.1 | 1.0.1-1.1 | Jan 1, 2022 | Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion. |
- CVE-2023-38496Jul 25, 2023affected < 1.2.1-1.1fixed 1.2.1-1.1
Apptainer is an open source container platform. Version 1.2.0-rc.2 introduced an ineffective privilege drop when requesting container network setup, therefore subsequent functions are called with root privileges, the attack surface is rather limited for users but an attacker coul
- CVE-2023-30549Apr 25, 2023affected < 1.1.8-1.1fixed 1.1.8-1.1
Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer < 1.1.0 and installations that include apptainer-suid < 1.1.8 on older operating systems where that CVE has not been patched. That incl
- CVE-2022-23538Jan 17, 2023affected < 1.1.6-1.1fixed 1.1.6-1.1
github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services (SCS) Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library servic
- CVE-2022-39237Oct 6, 2022affected < 1.1.2-1.1fixed 1.1.2-1.1
syslabs/sif is the Singularity Image Format (SIF) reference implementation. In versions prior to 2.8.1the `github.com/sylabs/sif/v2/pkg/integrity` package did not verify that the hash algorithm(s) used are cryptographically secure when verifying digital signatures. A patch is ava
- CVE-2021-44717Jan 1, 2022affected < 1.0.1-1.1fixed 1.0.1-1.1
Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.
Page 2 of 2