CVE-2019-10214: The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens.
CVE-2019-10214: The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens.
Please fix it.
Depends on packages which need a new maintainer
normal
The packages that singularity-container depends on which need a new maintainer are:
Migration status for singularity-container (3.1.1+ds-1 to 3.5.1+ds1-1): Waiting for test results, another package or too young (no action required now - check later)
![[bug history graph]](https://qa.debian.org/data/bts/graphs/s/singularity-container.png){kind=link}