CVE-2020-13845

CVE-2020-13845

Sylabs Singularity 3.0 through 3.5 has Improper Validation of an Integrity Check Value. Image integrity is not validated when an ECL policy is enforced. The fingerprint required by the ECL is compared against the signature object descriptor(s) in the SIF file, rather than to a cryptographically validated signature.

Source: CVE-2020-13845

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다