PT-2020-16674 · Canonical · Snapcraft+1

Itszn

Published

2020-12-03

Updated

2022-05-24

CVE-2020-27348

CVSS v3.1

6.8

Medium

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions snapcraft versions prior to 4.4.4 snapcraft versions prior to 2.43.1+16.04.1 snapcraft versions prior to 2.43.1+18.04.1

Description In some conditions, a snap package built by snapcraft includes the current directory in LD LIBRARY PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar.

Recommendations For versions prior to 4.4.4, update to version 4.4.4 or later. For versions prior to 2.43.1+16.04.1, update to version 2.43.1+16.04.1 or later. For versions prior to 2.43.1+18.04.1, update to version 2.43.1+18.04.1 or later. As a temporary workaround, consider restricting the use of the LD LIBRARY PATH variable to minimize the risk of exploitation.

Exploit

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2020-27348

GHSA-QXM5-VX5J-PP6W

PYSEC-2020-109

USN-4661-1

Affected Products

Ubuntu

Snapcraft

PT-2020-16674 · Canonical · Snapcraft+1

CVE-2020-27348

Weakness Enumeration

Related Identifiers

Affected Products

References · 20