A race condition existed in the snapd 2.54.2 snap-confine binary when preparing a private mount namespace for a snap. This could allow a local attacker to gain root privileges by bind-mounting their own contents inside the snap's private mount namespace and causing snap-confine to execute arbitrary code and hence gain privilege escalation. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
07 Nov 2023, 03:39
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
03 Feb 2023, 21:21
Type | Values Removed | Values Added |
---|---|---|
References | (FULLDISC) http://seclists.org/fulldisclosure/2022/Dec/4 - Exploit, Mailing List, Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/170176/snap-confine-must_mkdir_and_open_with_perms-Race-Condition.html - Exploit, Third Party Advisory, VDB Entry |
09 Dec 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Dec 2022, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Dec 2022, 17:08
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/11/30/2 - Exploit, Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/02/23/1 - Exploit, Mailing List, Third Party Advisory |
01 Dec 2022, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
01 Mar 2022, 16:56
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:canonical:snapd:*:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:21.10:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* |
|
CWE | CWE-362 | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/02/23/1 - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/02/18/2 - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3QTBN7LLZISXIA4KU4UKDR27Q5PXDS2U/ - Mailing List, Third Party Advisory | |
References | (MISC) https://ubuntu.com/security/notices/USN-5292-1 - Patch, Vendor Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCGHG6LJAVJJ72TMART6A7N4Z6MSTGI7/ - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/02/23/2 - Mailing List, Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5080 - Issue Tracking, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.9
v3 : 7.8 |
First Time |
Canonical ubuntu Linux
Debian debian Linux Fedoraproject fedora Canonical Canonical snapd Debian Fedoraproject |
24 Feb 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Feb 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Feb 2022, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 Feb 2022, 10:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Feb 2022, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-17 23:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-44731
Mitre link : CVE-2021-44731
CVE.ORG link : CVE-2021-44731
JSON object : View
Products Affected
fedoraproject
- fedora
debian
- debian_linux
canonical
- snapd
- ubuntu_linux
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')