CVE-2019-11480
The CVE concerns the pc-kernel snap build process, where the build chroot is created with hardcoded --allow-insecure-repositories and --allow-unauthenticated apt options. This design enables a MITM attacker on the path between the build environment and the Ubuntu archive to insert a malicious pac...