2 matches found
CVE-2017-14178
In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions...
CVE-2017-14178
In snapd 2.27–2.29.2, the snap logs command could be made to invoke journalctl without match arguments, enabling unprivileged, unauthenticated users to bypass systemd-journald access restrictions. Affected component: snapd (logs handling). Root cause: the snap logs path allows journalctl invocati...