Zygmunt Krynicki

**Name of the Vulnerable Software and Affected Versions** gnome-control-center (affected versions not specified) **Description** The issue arises when the system is configured to use systemd socket activation for openssh-server, causing gnome-control-center to not properly reflect the SSH remote login status. This could leave the local machine exposed to remote SSH access, contrary to the user's expectation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ubuntu-core-launcher versions prior to 1.0.27.1 **Description** The issue is related to the `setup snappy os mounts` function, which improperly determines the mount point of bind mounts when using snaps. This could potentially allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core." **Recommendations** For versions prior to 1.0.27.1, update to version 1.0.27.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of snaps with names starting with "ubuntu-core" to minimize the risk of exploitation.