Search CVE reports
1 – 3 of 3 results
CVE-2022-39237
Medium prioritysyslabs/sif is the Singularity Image Format (SIF) reference implementation. In versions prior to 2.8.1the `github.com/sylabs/sif/v2/pkg/integrity` package did not verify that the hash algorithm(s) used are cryptographically secure...
2 affected packages
golang-github-sylabs-sif, singularity-container
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
golang-github-sylabs-sif | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Ignored |
singularity-container | Needs evaluation | Not in release | Not in release | Needs evaluation | Ignored |
CVE-2021-33622
Medium prioritySylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value.
1 affected packages
golang-github-sylabs-sif
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
golang-github-sylabs-sif | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Ignored |
CVE-2021-29499
Medium prioritySIF is an open source implementation of the Singularity Container Image Format. The `siftool new` command and func siftool.New() produce predictable UUID identifiers due to insecure randomness in the version of the...
1 affected packages
golang-github-sylabs-sif
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
golang-github-sylabs-sif | Vulnerable | Vulnerable | Vulnerable | Not in release | Ignored |