USN-5292-3: snapd vulnerabilities

Read Time:53 Second

USN-5292-1 fixed several vulnerabilities in snapd. This update provides the
corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.

Original advisory details:

James Troup discovered that snap did not properly manage the permissions for
the snap directories. A local attacker could possibly use this issue to expose
sensitive information. (CVE-2021-3155)

Ian Johnson discovered that snapd did not properly validate content interfaces
and layout paths. A local attacker could possibly use this issue to inject
arbitrary AppArmor policy rules, resulting in a bypass of intended access
restrictions. (CVE-2021-4120)

The Qualys Research Team discovered that snapd did not properly validate the
location of the snap-confine binary. A local attacker could possibly use this
issue to execute other arbitrary binaries and escalate privileges.
(CVE-2021-44730)

The Qualys Research Team discovered that a race condition existed in the snapd
snap-confine binary when preparing a private mount namespace for a snap. A
local attacker could possibly use this issue to escalate privileges and
execute arbitrary code. (CVE-2021-44731)

Cyber Security News

ConnectWise Fixes XSS Vulnerability that Could Lead to Remote Code Execution

Google Releases Chrome Patch to Fix New Zero-Day Vulnerability

Remote Code Execution Vulnerability Found in Windows Internet Key Exchange

What is Antivirus and What Does It Really Protect?

Cybercriminals are increasingly using info-stealing malware to target victims

Experts Warn Remote Workers of Black Friday Security Threats

Experts Find 1600+ Malicious Docker Hub Images

Top cybersecurity M&A deals for 2022

Global Police Celebrate $130m Cyber Busts

USN-5292-3: snapd vulnerabilities

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

wireshark-4.0.1-1.fc37

firefox-107.0-4.fc35

ZDI-CAN-19046: Cacti

qpress-20220819-3.el8

qpress-20220819-1.el9