CVE-2019-11328
First published: Tue May 14 2019(Updated: )
An issue was discovered in Singularity 3.1.0 to 3.2.0-rc2, a malicious user with local/network access to the host system (e.g. ssh) could exploit this vulnerability due to insecure permissions allowing a user to edit files within `/run/singularity/instances/sing/<user>/<instance>`. The manipulation of those files can change the behavior of the starter-suid program when instances are joined resulting in potential privilege escalation on the host.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sylabs Singularity | >=3.1.0<3.2.0 | |
| Sylabs Singularity | =3.2.0 | |
| Sylabs Singularity | =3.2.0-rc1 | |
| Sylabs Singularity | =3.2.0-rc2 | |
| Fedoraproject Fedora | =28 | |
| Fedoraproject Fedora | =29 | |
| Fedoraproject Fedora | =30 | |
| Opensuse Backports | =sle-15 | |
| Opensuse Backports | =sle-15-sp1 | |
| openSUSE Leap | =15.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2019-11328
- https://github.com/sylabs/singularity/commit/618c9d56802399adb329c23ea2b70598eaff4a31
- https://github.com/sylabs/singularity/releases/tag/v3.2.0
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5O3TPL5OOTIZEI4H6IQBCCISBARJ6WL3/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LIHV7DSEVTB5SUPEZ2UXGS3Q6WMEQSO2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNU5BUHFOTYUZVHFUSX2VG4S3RCPUEMA/
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00028.html
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00059.html
- http://www.openwall.com/lists/oss-security/2019/05/16/1
- http://www.securityfocus.com/bid/108360
- https://github.com/advisories/GHSA-557g-r22w-9wvx (Advisory)
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNU5BUHFOTYUZVHFUSX2VG4S3RCPUEMA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5O3TPL5OOTIZEI4H6IQBCCISBARJ6WL3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LIHV7DSEVTB5SUPEZ2UXGS3Q6WMEQSO2/
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2019-11328.
What is the severity of CVE-2019-11328?
CVE-2019-11328 has a severity rating of 8.8 (Critical).
What is the affected software for CVE-2019-11328?
The affected software for CVE-2019-11328 includes Singularity versions 3.1.0 to 3.2.0-rc2, Sylabs Singularity, Fedora versions 28, 29, and 30, and openSUSE Leap 15.1.
How can a malicious user exploit CVE-2019-11328?
A malicious user with local/network access to the host system can exploit CVE-2019-11328 by manipulating files within `/run/singularity/instances/sing/<user>/<instance>` due to insecure permissions.
How can CVE-2019-11328 be fixed?
To fix CVE-2019-11328, it is recommended to update to Singularity version 3.2.0 or later, which includes a fix for the vulnerability.
- collector/github-advisory-latest
- alias/GHSA-557g-r22w-9wvx
- alias/CVE-2019-11328
- collector/github-advisory
- collector/nvd-index
- collector/nvd-cve
- agent/type
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- package-manager/go
- vendor/sylabs
- canonical/sylabs singularity
- version/sylabs singularity/3.1.0
- version/sylabs singularity/3.2.0
- version/sylabs singularity/3.2.0-rc1
- version/sylabs singularity/3.2.0-rc2
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/28
- version/fedoraproject fedora/29
- version/fedoraproject fedora/30
- vendor/opensuse
- canonical/opensuse backports
- version/opensuse backports/sle-15
- version/opensuse backports/sle-15-sp1
- canonical/opensuse leap
- version/opensuse leap/15.1