Vulnerability	Vulnerable Version
H UNIX Symbolic Link (Symlink) Following nvidia-resiliency-ext is a NVIDIA Resiliency Package Affected versions of this package are vulnerable to UNIX Symbolic Link (Symlink) Following via the log aggregation. An attacker can gain elevated privileges, execute arbitrary code, cause service disruption, access sensitive information, or modify data by exploiting predictable log-file names. How to fix UNIX Symbolic Link (Symlink) Following? Upgrade `nvidia-resiliency-ext` to version 0.5.0 or higher.	[,0.5.0)
H Race Condition nvidia-resiliency-ext is a NVIDIA Resiliency Package Affected versions of this package are vulnerable to Race Condition in the checkpointing core. An attacker can gain unauthorized access to sensitive information, modify data, disrupt service availability, or escalate privileges by exploiting a race condition during concurrent operations. How to fix Race Condition? Upgrade `nvidia-resiliency-ext` to version 0.4.1 or higher.	[,0.4.1)

UNIX Symbolic Link (Symlink) Following

nvidia-resiliency-ext is a NVIDIA Resiliency Package

Affected versions of this package are vulnerable to UNIX Symbolic Link (Symlink) Following via the log aggregation. An attacker can gain elevated privileges, execute arbitrary code, cause service disruption, access sensitive information, or modify data by exploiting predictable log-file names.

How to fix UNIX Symbolic Link (Symlink) Following?

Upgrade nvidia-resiliency-ext to version 0.5.0 or higher.

[,0.5.0)

Race Condition

nvidia-resiliency-ext is a NVIDIA Resiliency Package

Affected versions of this package are vulnerable to Race Condition in the checkpointing core. An attacker can gain unauthorized access to sensitive information, modify data, disrupt service availability, or escalate privileges by exploiting a race condition during concurrent operations.

How to fix Race Condition?

Upgrade nvidia-resiliency-ext to version 0.4.1 or higher.

[,0.4.1)

Go back to all versions of this package