16 matches found
EUVD-2016-2675
Malware in sbrugna...
Debian dla-3215 : golang-github-snapcore-snapd-dev - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3215 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3215-1 [email protected] https://www.debian.org/lts/security/...
Debian: Security Advisory (DSA-5292-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-5292-1 : snapd - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5292 advisory. The Qualys Research Team discovered a race condition in the snapd-confine binary which could result in local privilege escalation. For the stable distribution bullseye, th...
Ubuntu: Security Advisory (USN-2956-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ubuntu-core-launcher package information disclosure vulnerability
Ubuntu is a desktop-oriented GNU/Linux operating system developed by Canonical and the Ubuntu Foundation. ubuntu-core-launcher package is a core application package for launching Ubuntu. A security vulnerability exists in the 'setupsnappyosmounts' function in the ubuntu-core-launcher package prio...
CVE-2016-1580
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...
CVE-2016-1580
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...
Information disclosure
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...
CVE-2016-1580
The CVE-2016-1580 issue affects the ubuntu-core-launcher when running on Ubuntu classic systems. The setup_snappy_os_mounts function improperly determines the mount point of bind mounts used by snaps, enabling a remote attacker to obtain sensitive information or gain privileges via a snap whose n...
CVE-2016-1580
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...
Ubuntu 16.04 LTS : ubuntu-core-launcher vulnerability (USN-2956-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2956-1 advisory. Zygmunt Krynicki discovered that ubuntu-core-launcher did not properly sanitize its input and contained a logic error when determining the mountpoint of bind moun...
USN-2956-1: ubuntu-core-launcher vulnerability
Zygmunt Krynicki discovered that ubuntu-core-launcher did not properly sanitize its input and contained a logic error when determining the mountpoint of bind mounts when using snaps on Ubuntu classic systems eg, traditional desktop and server. If a user were tricked into installing a malicious sn...
USN-2956-1 ubuntu-core-launcher vulnerability
Zygmunt Krynicki discovered that ubuntu-core-launcher did not properly sanitize its input and contained a logic error when determining the mountpoint of bind mounts when using snaps on Ubuntu classic systems eg, traditional desktop and server. If a user were tricked into installing a malicious sn...
CVE-2016-1580
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...
UBUNTU-CVE-2016-1580
The setupsnappyosmounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."...