Overview
Request 1008781 accepted
- Udpated to 1.1.2 which fixed CVE-2022-39237
* CVE-2022-39237: The sif dependency included in Apptainer before this
release does not verify that the hash algorithm(s) used are
cryptographically secure when verifying digital signatures. This release
updates to sif v2.8.1 which corrects this issue. See the linked advisory
for references and a workaround. (forwarded request 1008777 from mslacken)
Request History
mslacken created request
- Udpated to 1.1.2 which fixed CVE-2022-39237
* CVE-2022-39237: The sif dependency included in Apptainer before this
release does not verify that the hash algorithm(s) used are
cryptographically secure when verifying digital signatures. This release
updates to sif v2.8.1 which corrects this issue. See the linked advisory
for references and a workaround. (forwarded request 1008777 from mslacken)
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
favogt_factory added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:82"
favogt_factory accepted review
Picked "openSUSE:Factory:Staging:adi:82"
licensedigger accepted review
The legal review is accepted preliminary. The package may require actions later on.
RBrownSUSE accepted review
RBrownFactory accepted review
Staging Project openSUSE:Factory:Staging:adi:82 got accepted.
RBrownFactory approved review
Staging Project openSUSE:Factory:Staging:adi:82 got accepted.
RBrownFactory accepted request
Staging Project openSUSE:Factory:Staging:adi:82 got accepted.