USN-5292-2: snapd vulnerabilities

Read Time:51 Second

USN-5292-1 fixed vulnerabilities in snapd. This update provides the
corresponding update for the riscv64 architecture.

Original advisory details:

James Troup discovered that snap did not properly manage the permissions for
the snap directories. A local attacker could possibly use this issue to expose
sensitive information. (CVE-2021-3155)

Ian Johnson discovered that snapd did not properly validate content interfaces
and layout paths. A local attacker could possibly use this issue to inject
arbitrary AppArmor policy rules, resulting in a bypass of intended access
restrictions. (CVE-2021-4120)

The Qualys Research Team discovered that snapd did not properly validate the
location of the snap-confine binary. A local attacker could possibly use this
issue to execute other arbitrary binaries and escalate privileges.
(CVE-2021-44730)

The Qualys Research Team discovered that a race condition existed in the snapd
snap-confine binary when preparing a private mount namespace for a snap. A
local attacker could possibly use this issue to escalate privileges and
execute arbitrary code. (CVE-2021-44731)

Court Rules Against NSO Group

European Vulnerability Database Launches Amid US CVE Chaos

M&S Confirms Customer Data Stolen in Cyber-Attack

UK Considers New Enterprise IoT Security Law

Hacktivist Attacks on India Overstated Amid APT36 Espionage Threat

Criminal Proxy Network Infects Thousands of IoT Devices

#Infosec2025: Experts to Shine Light on Vendor Supply Chain Resilience Against Third-Party Risks

EU Launches Free Entry-Level Cyber Training Program

FreeDrain Phishing Scam Drains Crypto Hobbyists’ Wallets

USN-5292-2: snapd vulnerabilities

firefox-138.0.3-1.fc40

USN-7506-4: Linux kernel (Xenial HWE) vulnerabilities

xen-4.19.2-4.fc42

perl-Mojolicious-9.39-1.fc41

perl-Mojolicious-9.39-1.fc40

znc-1.8.2-16.el8