Showing 1 - 3 of 3

CVE-2022-3328

Status Candidate

Overview

Race condition in snap-confine's must_mkdir_and_open_with_perms()

snap-confine must_mkdir_and_open_with_perms() Race Condition: Posted Dec 9, 2022; Authored by Qualys Security Advisory; Qualys discovered a race condition (CVE-2022-3328) in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability (which was introduced in February 2022 by the patch for CVE-2021-44731) and detail how they exploited it in Ubuntu Server (a local privilege escalation, from any user to root) by combining it with two vulnerabilities in multipathd (an authorization bypass and a symlink attack, CVE-2022-41974 and CVE-2022-41973).; tags | exploit, local, root, vulnerability; systems | linux, ubuntu; advisories | CVE-2021-44731, CVE-2022-3328, CVE-2022-41973, CVE-2022-41974; SHA-256 | ae9802d4db6010e09c5ca96ad72cd8f9bb70aff4d7af8a1ec00cebd3203d1f95; Download | Favorite | View

Debian Security Advisory 5292-1: Posted Dec 2, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5292-1 - The Qualys Research Team discovered a race condition in the snapd-confine binary which could result in local privilege escalation.; tags | advisory, local; systems | linux, debian; advisories | CVE-2022-3328; SHA-256 | 63ecb2fa9607b100b03d38946750f97753ae423a271e95c27aafa2e1c56f7348; Download | Favorite | View

Ubuntu Security Notice USN-5753-1: Posted Dec 1, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5753-1 - The Qualys Research Team discovered that a race condition existed in the snapd snap-confine binary when preparing the private /tmp mount for a snap. A local attacker could possibly use this issue to escalate privileges and execute arbitrary code.; tags | advisory, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2022-3328; SHA-256 | 99c4b348641a89133cbe547d4f46f163510638a094b7414195395957e465a727; Download | Favorite | View

Page 1 of 1 Back 1 Next