UbuntuUSN-4424-1snapd vulnerabilities
Releases
- Ubuntu 20.04 LTS
- Ubuntu 19.10
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
Packages
- snapd - Daemon and tooling that enable snap packages
Details
It was discovered that cloud-init as managed by snapd on Ubuntu Core 16 and
Ubuntu Core 18 devices ran on every boot without restrictions. A physical
attacker could exploit this to craft cloud-init user-data/meta-data via
external media to perform arbitrary changes on the device to bypass
intended security mechanisms such as full disk encryption. This issue did
not affect traditional Ubuntu systems. (CVE-2020-11933)
It was discovered that snapctl user-open allowed altering the XDG_DATA_DIRS
environment variable when calling the system xdg-open. A malicious snap
could exploit this to bypass intended access restrictions to control how
the host system xdg-open script opens the URL. This issue did not affect
Ubuntu Core systems. (CVE-2020-11934)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 20.04 | noarch | snapd | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | golang-github-snapcore-snapd-dev | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | golang-github-ubuntu-core-snappy-dev | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | snap-confine | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | snapd-dbgsym | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | snapd-xdg-open | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | ubuntu-core-launcher | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | ubuntu-core-snapd-units | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | ubuntu-snappy | <Â 2.45.1+20.04.2 | UNKNOWN |
| Ubuntu | 20.04 | noarch | ubuntu-snappy-cli | <Â 2.45.1+20.04.2 | UNKNOWN |
Related
