CVE-2020-15229CRITICALCVSS 9.3fixed in 3.6.42020-10-14
CVE-2020-15229 [CRITICAL] CWE-22 CVE-2020-15229: Singularity (an open source container platform) from version 3.1.1 through 3.6.3 has a vulnerability
Singularity (an open source container platform) from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within `unsquashfs`, it is possible to overwrite/create any files on the host filesystem during the extraction with a crafted squashfs filesystem. The extraction occurs au
cvelistv5nvd