Lucene search
K

203 matches found

CVE
CVE
added 2022/03/02 12:0 a.m.246 views

CVE-2021-3631

CVE-2021-3631 affects libvirt: flaw in SELinux MCS category pair generation for VM dynamic labels allows a guest to access files labeled for another guest, breaking sVirt confinement and impacting confidentiality/integrity. Connected advisories confirm libvirt remediation via package upgrades (no...

6.3CVSS6.2AI score0.00493EPSS
Exploits1References7Affected Software1
Snyk
Snyk
added 2022/02/18 2:30 p.m.3 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass due to failure to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layou...

8.2CVSS5.7AI score0.00437EPSS
Exploits1References2
Snyk
Snyk
added 2022/02/18 2:30 p.m.7 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass due to failure to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layou...

8.2CVSS5.7AI score0.00437EPSS
Exploits1References2
Snyk
Snyk
added 2022/02/18 2:30 p.m.3 views

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass due to failure to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layou...

8.2CVSS5.7AI score0.00437EPSS
Exploits1References2
OSV
OSV
added 2022/02/18 1:7 a.m.13 views

USN-5292-2 snapd vulnerabilities

USN-5292-1 fixed vulnerabilities in snapd. This update provides the corresponding update for the riscv64 architecture. Original advisory details: James Troup discovered that snap did not properly manage the permissions for the snap directories. A local attacker could possibly use this issue to...

8.8CVSS7AI score0.00952EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2022/02/18 12:0 a.m.52 views

Ubuntu 20.04 LTS : snapd vulnerabilities (USN-5292-2)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5292-2 advisory. USN-5292-1 fixed vulnerabilities in snapd. This update provides the corresponding update for the riscv64 architecture. Tenable has extracted the precedin...

8.8CVSS7.2AI score0.00952EPSS
Exploits5References5
ATTACKERKB
ATTACKERKB
added 2022/02/17 11:15 p.m.6 views

CVE-2021-4120

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

8.2CVSS7.5AI score0.00437EPSS
Exploits1References8
NVD
NVD
added 2022/02/17 11:15 p.m.22 views

CVE-2021-4120

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

8.2CVSS0.00437EPSS
Exploits1References5
OSV
OSV
added 2022/02/17 11:15 p.m.4 views

DEBIAN-CVE-2021-4120

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

7.8CVSS8AI score0.00437EPSS
Exploits1References1
Prion
Prion
added 2022/02/17 11:15 p.m.26 views

Design/Logic Flaw

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

4.6CVSS8.1AI score0.00437EPSS
Exploits1References5Affected Software3
CVE
CVE
added 2022/02/17 10:15 p.m.142 views

CVE-2021-4120

CVE-2021-4120 affects snapd 2.54.2, where insufficient validation of snap content interface and layout paths allows a snap to inject arbitrary AppArmor policy rules and escape strict snap confinement. The underlying issue is in the content interface and layout declarations, enabling bypass of con...

8.2CVSS8.1AI score0.00437EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2022/02/17 10:15 p.m.31 views

CVE-2021-4120 snapd could be made to bypass intended access restrictions through snap content interfaces and layout paths

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

8.2CVSS8.6AI score0.00437EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2022/02/17 10:15 p.m.44 views

CVE-2021-4120

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions...

8.2CVSS7.9AI score0.00437EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/02/17 12:0 a.m.33 views

Ubuntu 18.04 LTS / 20.04 LTS : snapd vulnerabilities (USN-5292-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5292-1 advisory. James Troup discovered that snap did not properly manage the permissions for the snap directories. A local attacker could possibly use this...

8.8CVSS7.8AI score0.00952EPSS
Exploits5References5
AlmaLinux
AlmaLinux
added 2021/12/16 9:37 a.m.19 views

selinux-policy bug fix and enhancement update

The selinux-policy packages contain the rules that govern how confined processes run on the system. Bug Fixes and Enhancements: RHEL 8.4 Backport container-selinux policy to allow spct domains to set bpf rules on any domain BZ2015846 AVC prevents ping -I from running in UBI 8 container BZ2027691...

1.2AI score
Exploits0
OSV
OSV
added 2021/12/14 11:33 a.m.5 views

USN-5191-1 flatpak vulnerability

It was discovered that Flatpak incorrectly handled certain AFUNIX sockets. An attacker could use this to specially craft a Flatpak application that could escape sandbox confinement...

8.8CVSS6.8AI score0.00406EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2021/12/14 11:33 a.m.64 views

USN-5191-1: Flatpak vulnerability

It was discovered that Flatpak incorrectly handled certain AFUNIX sockets. An attacker could use this to specially craft a Flatpak application that could escape sandbox confinement...

8.8CVSS6.9AI score0.00406EPSS
Exploits0
OSV
OSV
added 2021/10/15 11:3 a.m.4 views

OESA-2021-1385 libvirt security update

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support. Security Fixes: An improper locking issue was found in the virStoragePoolLookupByTargetPath API o...

6.5CVSS6.5AI score0.01366EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.5 views

libvirt: Insecure sVirt label generation

A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality a...

6.3CVSS6.8AI score0.00493EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.39 views

openSUSE 15 Security Update : libvirt (openSUSE-SU-2021:1119-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1119-1 advisory. - A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access...

6.3CVSS6.9AI score0.00493EPSS
Exploits1References5
Rows per page
Query Builder