Security update for singularity
This update for singularity to version 2.6.1 fixes the following issues:
Security issues fixed:
- CVE-2018-19295: Mount points are not mounted with shared mount propagation by default anymore, as this may result in privilege escalation (boo#1111411).
- CVE-2018-12021: Fixed a incorrect access control issues on systems supporting overlay file system (boo#1100333).
-
Submitted by
Egbert Eich (eeich)
Fixed bugs
bnc#1100333
VUL-0: CVE-2018-12021: singularity: Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control onsystems supporting overlay file system
bnc#1111411
singularity: re-audit for changes, and squashfs enablement
