USN-5292-4: snapd regression

Read Time:55 Second

USN-5292-1 fixed a vulnerability in snapd. Unfortunately that update introduced
a regression that could break the fish shell. This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

James Troup discovered that snap did not properly manage the permissions for
the snap directories. A local attacker could possibly use this issue to expose
sensitive information. (CVE-2021-3155)

Ian Johnson discovered that snapd did not properly validate content interfaces
and layout paths. A local attacker could possibly use this issue to inject
arbitrary AppArmor policy rules, resulting in a bypass of intended access
restrictions. (CVE-2021-4120)

The Qualys Research Team discovered that snapd did not properly validate the
location of the snap-confine binary. A local attacker could possibly use this
issue to execute other arbitrary binaries and escalate privileges.
(CVE-2021-44730)

The Qualys Research Team discovered that a race condition existed in the snapd
snap-confine binary when preparing a private mount namespace for a snap. A
local attacker could possibly use this issue to escalate privileges and
execute arbitrary code. (CVE-2021-44731)

SEC SIM Swapper Gets 14 Months for X Account Hijack

Legal Aid Agency Admits Major Breach of Applicant Data

#Infosec2025: How CISOs Can Stay Ahead of Evolving Cloud Threats

Friday Squid Blogging: Pet Squid Simulation

Communications Backdoor in Chinese Power Inverters

US Officials Impersonated Via SMS and Voice Deepfakes

Prescription for disaster: Sensitive patient data leaked in Ascension breach

UK Cyber Vacancies Growing 12% Per Year

Russian Espionage Operation Targets Organizations Linked to Ukraine War

openssh-9.9p1-11.fc42

openssh-9.9p1-4.fc41

DSA-5922-1 firefox-esr – security update

DSA-5923-1 net-tools – security update

iputils-20240905-4.fc41

iputils-20240905-4.fc42