Cloud Foundry Logo
blog single gear
Blog
Security Advisory

USN-3887-1: snapd vulnerability

by: February 15, 2019

USN-3887-1: snapd vulnerability

Severity

High

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 14.04
  • Canonical Ubuntu 16.04
  • Canonical Ubuntu 18.04

Description

Chris Moberly discovered that snapd versions 2.28 through 2.37 incorrectly validated and parsed the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. On Ubuntu systems with snaps installed, snapd typically will have already automatically refreshed itself to snapd 2.37.1 which is unaffected.

Affected Cloud Foundry Products and Versions

Current versions of trusty stemcells, xenial stemcells, cflinuxfs2 and cflinuxfs3 are not affected by this vulnerability.

References

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-6258-1: LLVM Toolchain vulnerabilities
Security Advisory

USN-6258-1: LLVM Toolchain vulnerabilities

by Cloud Foundry Foundation Security Team August 16, 2023
USN-4670-1: ImageMagick vulnerabilities
Security Advisory

USN-4670-1: ImageMagick vulnerabilities

by Cloud Foundry Foundation Security Team February 10, 2021
USN-5825-1: PAM vulnerability
Security Advisory

USN-5825-1: PAM vulnerability

by Cloud Foundry Foundation Security Team February 24, 2023
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept