snapd created ~/snap with too-wide permissions
CVE-2021-3155

3.8LOW

Key Information:

Vendor
Canonical Ltd.
Status
Snapd
Vendor
CVE Published:
17 February 2022

Summary

snapd 2.54.2 and earlier created ~/snap directories in user home directories without specifying owner-only permissions. This could allow a local attacker to read information that should have been private. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

Affected Version(s)

snapd <= 2.54.2

References

https://ubuntu.com/security/notices/USN-5292-1
x_refsource_MISC
https://github.com/snapcore/snapd/commit/6bcaeeccd16ed829...
x_refsource_MISC
https://github.com/snapcore/snapd/commit/7d2a966620002149...
x_refsource_MISC

CVSS V3.1

Score:
3.8
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

James Troup
.