Cloud Foundry Logo
blog single gear
Blog
Security Advisory

USN-3887-1: snapd vulnerability

by: February 15, 2019

USN-3887-1: snapd vulnerability

Severity

High

Vendor

Canonical Ubuntu

Versions Affected

  • Canonical Ubuntu 14.04
  • Canonical Ubuntu 16.04
  • Canonical Ubuntu 18.04

Description

Chris Moberly discovered that snapd versions 2.28 through 2.37 incorrectly validated and parsed the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. On Ubuntu systems with snaps installed, snapd typically will have already automatically refreshed itself to snapd 2.37.1 which is unaffected.

Affected Cloud Foundry Products and Versions

Current versions of trusty stemcells, xenial stemcells, cflinuxfs2 and cflinuxfs3 are not affected by this vulnerability.

References

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-2740-1 ICU Vulnerabilities
Security Advisory

USN-2740-1 ICU Vulnerabilities

by Cloud Foundry Foundation Security Team October 7, 2015
USN-3085-1 GDK-PixBuf vulnerabilities
Security Advisory

USN-3085-1 GDK-PixBuf vulnerabilities

by Cloud Foundry Foundation Security Team September 28, 2016
USN-6852-1: Wget vulnerability
Security Advisory

USN-6852-1: Wget vulnerability

by Cloud Foundry Foundation Security Team July 25, 2024
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept