Symlink Race Vulnerability in Snapd Affects Snap-Confine
CVE-2019-11503

7.5HIGH

Key Information:

Vendor

Canonical

Status
Snapd
Vendor
CVE Published:
24 April 2019

What is CVE-2019-11503?

The vulnerability in snapd, specifically in the snap-confine component, arises from a failure to properly handle symlink races during the execution of the chdir() function for the current working directory of the calling user. This flaw can be exploited to bypass permissions related to 'cwd restore', potentially allowing unauthorized access or actions within a user’s environment. Users of affected versions are advised to update their snapd installations to mitigate the risk associated with this issue.

References

https://www.openwall.com/lists/oss-security/2019/04/18/4
x_refsource_MISC
https://github.com/snapcore/snapd/pull/6642
x_refsource_MISC
http://www.openwall.com/lists/oss-security/2019/04/25/7
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2019-11503 : Symlink Race Vulnerability in Snapd Affects Snap-Confine