Zyga

**Name of the Vulnerable Software and Affected Versions** ubuntu-core-launcher versions prior to 1.0.27.1 **Description** The issue is related to the `setup snappy os mounts` function, which improperly determines the mount point of bind mounts when using snaps. This could potentially allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core." **Recommendations** For versions prior to 1.0.27.1, update to version 1.0.27.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of snaps with names starting with "ubuntu-core" to minimize the risk of exploitation.