Vulnerability Name:

CVE-2021-29136 (CCN-199430)

Assigned:2021-04-06
Published:2021-04-06
Updated:2021-05-20
Summary:Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.
CVSS v3 Severity:5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-20
Vulnerability Consequences:File Manipulation
References:Source: MITRE
Type: CNA
CVE-2021-29136

Source: MISC
Type: Mailing List, Patch, Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/04/06/2

Source: XF
Type: UNKNOWN
umoci-cve202129136-symlink(199430)

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/opencontainers/umoci/commit/d9efc31daf2206f7d3fdb839863cf7a576a2eb57

Source: CCN
Type: umoci Web site
malicious layer with symlink entry for "/" allows overwriting of host files

Source: CONFIRM
Type: Third Party Advisory
https://github.com/opencontainers/umoci/security/advisories/GHSA-9m95-8hx6-7p9v

Source: CCN
Type: oss-sec Mailing List, Thu, 18 Mar 2021 01:20:18 +0530
CVE-2021-29136: umoci: malicious layer with symlink entry for "/" allows overwriting of host files

Vulnerable Configuration:Configuration 1:
  • cpe:/a:linuxfoundation:umoci:*:*:*:*:*:*:*:* (Version < 0.4.7)
  • OR cpe:/a:sylabs:singularity:*:*:*:*:*:*:*:* (Version < 3.7.3)

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:7822
    P
    		umoci-0.4.7-3.12.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:1253
    P
    		Security update for nodejs18 (Moderate)
    2023-02-15
    oval:org.opensuse.security:def:715
    P
    		Security update for libslirp (Moderate)
    2022-08-30
    oval:org.opensuse.security:def:3793
    P
    		Security update for xorg-x11-server (Important)
    2022-07-12
    oval:org.opensuse.security:def:3792
    P
    		Security update for freerdp (Critical)
    2022-07-11
    oval:org.opensuse.security:def:3616
    P
    		libjpeg62-32bit-62.2.0-31.14.2 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:3215
    P
    		libncurses5-32bit-5.9-64.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:3800
    P
    		systemtap-3.0-20.11 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94845
    P
    		umoci-0.4.7-3.12.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94708
    P
    		libsnmp30-5.7.3-10.12.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94709
    P
    		libsolv-devel-0.7.22-150400.1.5 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:324
    P
    		umoci-0.4.6-3.9.1 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:99469
    P
    		 (Important)
    2022-04-12
    oval:org.opensuse.security:def:113439
    P
    		singularity-3.8.3-1.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:113551
    P
    		umoci-0.4.7-2.3 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:99435
    P
    		 (Moderate)
    2021-12-03
    oval:org.opensuse.security:def:106840
    P
    		singularity-3.8.3-1.2 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:106942
    P
    		umoci-0.4.7-2.3 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:97034
    P
    		rmt-server-1.2.2-1.15 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:99668
    P
    		 (Important)
    2021-08-17
    oval:org.opensuse.security:def:62342
    P
    		umoci-0.4.6-3.9.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:72083
    P
    		umoci-0.4.6-3.9.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:101100
    P
    		umoci-0.4.6-3.9.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:101446
    P
    		Security update for umoci (Important)
    2021-07-27
    oval:org.opensuse.security:def:111568
    P
    		Security update for umoci (Important)
    2021-07-27
    oval:org.opensuse.security:def:64705
    P
    		Security update for umoci (Important)
    2021-07-27
    oval:org.opensuse.security:def:73827
    P
    		Security update for umoci (Important)
    2021-07-27
    oval:org.opensuse.security:def:99976
    P
    		 (Important)
    2021-07-20
    oval:org.opensuse.security:def:11238
    P
    		Security update for singularity (Important)
    2021-07-08
    oval:org.opensuse.security:def:111536
    P
    		Security update for singularity (Important)
    2021-07-08
    oval:org.opensuse.security:def:111424
    P
    		Security update for umoci (Important)
    2021-06-07
    oval:org.opensuse.security:def:8968
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:117602
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:92129
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:9719
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:92519
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:108088
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:101422
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:64889
    P
    		Security update for umoci (Moderate)
    2021-06-04
    oval:org.opensuse.security:def:92917
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:101677
    P
    		Security update for umoci (Moderate)
    2021-06-04
    oval:org.opensuse.security:def:69859
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:99079
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:93223
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:8773
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:91934
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:9520
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:92320
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:10270
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:92718
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:69660
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:98884
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:93070
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:70410
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:64882
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:99270
    P
    		Security update for umoci (Important)
    2021-06-04
    oval:org.opensuse.security:def:96490
    P
    		Security update for singularity (Moderate)
    2021-05-30
    oval:org.opensuse.security:def:109837
    P
    		Security update for singularity (Moderate)
    2021-05-30
    oval:org.opensuse.security:def:103180
    P
    		Security update for singularity (Moderate)
    2021-05-30
    oval:org.opensuse.security:def:11223
    P
    		Security update for singularity (Moderate)
    2021-05-30
    oval:org.opensuse.security:def:99634
    P
    		 (Moderate)
    2021-05-05
    oval:org.opensuse.security:def:99939
    P
    		 (Important)
    2021-05-04
    oval:org.opensuse.security:def:101421
    P
    		Security update for ceph (Important)
    2021-05-04
    oval:org.opensuse.security:def:111317
    P
    		Security update for umoci (Important)
    2021-04-13
    oval:org.opensuse.security:def:92883
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:69825
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:96834
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:99041
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:93189
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:8735
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:91896
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:9486
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:92286
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:10236
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:92684
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:69626
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:98846
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:93036
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:70376
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:64881
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:99236
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:8930
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:117601
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:92091
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:9685
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:92485
    P
    		Security update for umoci (Important)
    2021-04-09
    oval:org.opensuse.security:def:108087
    P
    		Security update for umoci (Important)
    2021-04-09
    BACK
    linuxfoundation umoci *
    sylabs singularity *