Oval Definition:oval:org.opensuse.security:def:201911328
Revision Date:2022-06-30Version:1
Title:CVE-2019-11328
Description:

An issue was discovered in Singularity 3.1.0 to 3.2.0-rc2, a malicious user with local/network access to the host system (e.g. ssh) could exploit this vulnerability due to insecure permissions allowing a user to edit files within `/run/singularity/instances/sing//`. The manipulation of those files can change the behavior of the starter-suid program when instances are joined resulting in potential privilege escalation on the host.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-11328
openSUSE-SU-2019:2288-1
openSUSE-SU-2020:1037-1
Mitre CVE-2019-11328
SUSE CVE-2019-11328
openSUSE-SU-2019:2288-1
openSUSE-SU-2020:1037-1
Platform(s):openSUSE Leap 15.1
openSUSE Tumbleweed
SUSE CaaS Platform 4.0
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • singularity-3.6.0-lp151.2.6 is installed
  • AND singularity is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND singularity-3.8.3-1.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND singularity-3.4.1-bp151.3.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND singularity-3.4.1-bp151.3.3.1 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND singularity-3.4.1-bp150.2.10.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • permissions is affected
  • OR permissions-zypp-plugin is affected
    • Definition Synopsis
  • Release Information
  • SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND permissions is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND
  • permissions is affected
  • OR permissions-zypp-plugin is affected
    • BACK