Update Info

openSUSE-2021-810


Security update for singularity


Type: security
Severity: moderate
Issued: 2021-05-30
Description:
This update for singularity fixes the following issues:

singularity was updated to version 3.7.3:

- Fix for CVE-2021-29136:
  A dependency used to extract docker/OCI image layers can be
  tricked into modifying host files by creating a malicious layer
  that has a symlink with the name "." (or "/"), when running as root.


              

Packages


  • singularity-3.7.3-bp152.2.19.3