New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager

[Tech Junky]

New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager

New Linux vulnerabilities in Canonical's Snap for software packaging system can be exploited to gain root privileges.

thehackernews.com

Additionally discovered by the cybersecurity firm are six other flaws –

• CVE-2021-3995 – Unauthorized unmount in util-linux's libmount
• CVE-2021-3996 – Unauthorized unmount in util-linux's libmount
• CVE-2021-3997 – Uncontrolled recursion in systemd's systemd-tmpfiles
• CVE-2021-3998 – Unexpected return value from glibc's realpath()
• CVE-2021-3999 – Off-by-one buffer overflow/underflow in glibc's getcwd()
• CVE-2021-44730 – Hardlink attack in snap-confine's sc_open_snapd_tool()

 

[Centrifuge]

New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager

New Linux vulnerabilities in Canonical's Snap for software packaging system can be exploited to gain root privileges.

thehackernews.com

Additionally discovered by the cybersecurity firm are six other flaws –

• CVE-2021-3995 – Unauthorized unmount in util-linux's libmount
• CVE-2021-3996 – Unauthorized unmount in util-linux's libmount
• CVE-2021-3997 – Uncontrolled recursion in systemd's systemd-tmpfiles
• CVE-2021-3998 – Unexpected return value from glibc's realpath()
• CVE-2021-3999 – Off-by-one buffer overflow/underflow in glibc's getcwd()
• CVE-2021-44730 – Hardlink attack in snap-confine's sc_open_snapd_tool()

...and patched and updated on Arch, let the year of the Linux desktop continue..

 

[Tech Junky]

@Centrifuge

Still a good heads up for those that don't run updates often. I've seen servers in the past go a year or more w/o them being applied.