Input Injection Vulnerability in Snapd for Ubuntu
CVE-2023-1523

10CRITICAL

Key Information:

Vendor
Canonical Ltd.
Status
Snapd
Vendor
CVE Published:
1 September 2023

Summary

A vulnerability exists in Snapd where the TIOCLINUX ioctl request could be exploited by a malicious snap. This could lead to unauthorized commands being executed on the controlling terminal after the snap has exited, presenting a potential risk to system integrity. Notably, this issue arises specifically when snaps are operated on virtual consoles; graphical terminal emulators like xterm and gnome-terminal are not affected.

Affected Version(s)

snapd Linux 2.59.5

References

https://ubuntu.com/security/notices/USN-6125-1
vendor-advisory
https://github.com/snapcore/snapd/pull/12849
issue-tracking
https://marc.info/?l=oss-security&m=167879021709955&w=2
mailing-list

CVSS V3.1

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.