USN-5292-1 fixed a vulnerability in snapd. Unfortunately that update introduced
a regression that could break the fish shell. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
James Troup discovered that snap did not properly manage the permissions for
the snap directories. A local attacker could possibly use this issue to expose
sensitive information. (CVE-2021-3155)
Ian Johnson discovered that snapd did not properly validate content interfaces
and layout paths. A local attacker could possibly use this issue to inject
arbitrary AppArmor policy rules, resulting in a bypass of intended access
restrictions. (CVE-2021-4120)
The Qualys Research Team discovered that snapd did not properly validate the
location of the snap-confine binary. A local attacker could possibly use this
issue to execute other arbitrary binaries and escalate privileges.
(CVE-2021-44730)
The Qualys Research Team discovered that a race condition existed in the snapd
snap-confine binary when preparing a private mount namespace for a snap. A
local attacker could possibly use this issue to escalate privileges and
execute arbitrary code. (CVE-2021-44731)
More Stories
openssh-9.9p1-11.fc42
FEDORA-2025-ad76584c00 Packages in this update: openssh-9.9p1-11.fc42 Update description: Fixes CVE-2025-32728 Read More
openssh-9.9p1-4.fc41
FEDORA-2025-8896dcbcd0 Packages in this update: openssh-9.9p1-4.fc41 Update description: Fixes CVE-2025-32728 Read More
DSA-5922-1 firefox-esr – security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of...
DSA-5923-1 net-tools – security update
Mohamed Maatallah discovered a stack-based buffer overflow in the get_name() function in net-tools, a collection of programs for controlling the...
iputils-20240905-4.fc41
FEDORA-2025-7e1b66f54e Packages in this update: iputils-20240905-4.fc41 Update description: Fix for CVE-2025-47268 Read More
iputils-20240905-4.fc42
FEDORA-2025-dd7e746aac Packages in this update: iputils-20240905-4.fc42 Update description: Fix for CVE-2025-47268 Read More