CVE-2020-25039: Incorrect Permission Assignment for Critical Resource

September 16, 2020 (updated July 21, 2021)

Sylabs Singularity has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution.

References

nvd.nist.gov/vuln/detail/CVE-2020-25039

Detect and mitigate CVE-2020-25039 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →