snapd created ~/snap with too-wide permissions
CVE-2021-3155

3.8LOW

Key Information:

Vendor: Canonical Ltd.
Status: Snapd
Vendor: CVE Published:; 17 February 2022

🔔 Create Canonical Ltd. Vulnerability Alert

What is CVE-2021-3155?

snapd 2.54.2 and earlier created ~/snap directories in user home directories without specifying owner-only permissions. This could allow a local attacker to read information that should have been private. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

Affected Version(s)

snapd <= 2.54.2

References

https://ubuntu.com/security/notices/USN-5292-1

x_refsource_MISC

https://github.com/snapcore/snapd/commit/6bcaeeccd16ed829...

x_refsource_MISC

https://github.com/snapcore/snapd/commit/7d2a966620002149...

x_refsource_MISC

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2022
Vulnerability Reserved
Jan 15, 2021

Credit

James Troup

.

CVE-2021-3155 : snapd created ~/snap with too-wide permissions