GHSA-P9V8-Q5M4-PF46 CVE-2024-5138: snapd snapctl auth bypass
Impact A snap with prior permissions to create a mount entry on the host, such as firefox, normally uses the permission from one of the per-snap hook programs. A unprivileged users cannot normally trigger that behaviour by using snap run --shell firefox followed by snapctl mount, since snapd...