CVE-2021-44730
published 2022-02-17CVE-2021-44730: snapd 2.54.2 did not properly validate the location of the snap-confine binary. A local attacker who can hardlink this binary to another location to cause…
high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
snapd 2.54.2 did not properly validate the location of the snap-confine binary. A local attacker who can hardlink this binary to another location to cause snap-confine to execute other arbitrary binaries and hence gain privilege escalation. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | snapd | <= 2.54.2 | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical_ltd | snapd | unspecified – 2.54.2 | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | snapd | < snapd 2.54.3-1 (bookworm) | snapd 2.54.3-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| snapcraft | snapd | >= 0 < 2.49-1+deb11u1 | 2.49-1+deb11u1 |
| snapcraft | snapd | >= 0 < 2.54.3-1 | 2.54.3-1 |
| snapcraft | snapd | >= 0 < 2.54.3-1 | 2.54.3-1 |
| snapcraft | snapd | >= 0 < 2.54.3-1 | 2.54.3-1 |
| snapcraft | snapd | >= 0 < 2.54.3+18.04 | 2.54.3+18.04 |
| snapcraft | snapd | >= 0 < 2.54.3+18.04.2ubuntu0.2 | 2.54.3+18.04.2ubuntu0.2 |
| snapcraft | snapd | >= 0 < 2.54.3+20.04 | 2.54.3+20.04 |
| snapcraft | snapd | >= 0 < 2.54.3+20.04.1 | 2.54.3+20.04.1 |
| snapcraft | snapd | >= 0 < 2.54.3+20.04.1ubuntu0.2 | 2.54.3+20.04.1ubuntu0.2 |
| snapcraft | snapd | >= 0 < 2.54.3+14.04~esm1 | 2.54.3+14.04~esm1 |
| snapcraft | snapd | >= 0 < 2.54.3+14.04.0ubuntu0.1~esm3 | 2.54.3+14.04.0ubuntu0.1~esm3 |
| snapcraft | snapd | >= 0 < 2.54.3+16.04~esm2 | 2.54.3+16.04~esm2 |
| snapcraft | snapd | >= 0 < 2.54.3+16.04.0ubuntu0.1~esm4 | 2.54.3+16.04.0ubuntu0.1~esm4 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
osv8.8HIGH