| Revision Date: | 2020-11-02 | Version: | 1 |
| Title: | Security update for singularity (Important) |
| Description: |
This update for singularity fixes the following issues:
Update to new version 3.6.4:
- CVE-2020-15229: Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create files on the host filesystem during the extraction of a crafted squashfs filesystem (boo#1177901).
This update was imported from the openSUSE:Leap:15.2:Update update project.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1177901
CVE-2020-15229
openSUSE-SU-2020:1814-1
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
| Product(s): | |
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed AND singularity-3.6.4-bp152.2.12.1 is installed
|