USN-5292-4: snapd regression

Read Time:55 Second

USN-5292-1 fixed a vulnerability in snapd. Unfortunately that update introduced
a regression that could break the fish shell. This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

James Troup discovered that snap did not properly manage the permissions for
the snap directories. A local attacker could possibly use this issue to expose
sensitive information. (CVE-2021-3155)

Ian Johnson discovered that snapd did not properly validate content interfaces
and layout paths. A local attacker could possibly use this issue to inject
arbitrary AppArmor policy rules, resulting in a bypass of intended access
restrictions. (CVE-2021-4120)

The Qualys Research Team discovered that snapd did not properly validate the
location of the snap-confine binary. A local attacker could possibly use this
issue to execute other arbitrary binaries and escalate privileges.
(CVE-2021-44730)

The Qualys Research Team discovered that a race condition existed in the snapd
snap-confine binary when preparing a private mount namespace for a snap. A
local attacker could possibly use this issue to escalate privileges and
execute arbitrary code. (CVE-2021-44731)

Cyber Security News

US Congress Passes Bill to Ban TikTok

How to Tell If Your Text Message Is Real

US Sanctions Iranian “Fronts” for Cyber-Attacks on American Entities

Leeds Talent Pool Attracts BlueVoyant’s First UK Security Operations Center

City street lights “misbehave” after ransomware attack

Dan Solove on Privacy Regulation

Security Leaders Braced for Daily AI-Driven Attacks by Year-End

Understanding how Rationality, Deterrence Theory, and Indeterminism Influence Cybercrime.

Fifth of CISOs Admit Staff Leaked Data Via GenAI

libcoap-4.3.4a-2.fc40

ruby-3.3.1-7.fc40

python-dns-2.4.2-2.fc39

python-dns-2.3.0-3.fc38

thunderbird-flatpak-115.10.1-1

libcoap-4.3.4a-2.fc39