Release | Version |
---|---|
bullseye | 2.49-1+deb11u2 |
bookworm | 2.57.6-1 |
trixie | 2.63-4 |
sid | 2.65.1-1 |
Bug | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|
CVE-2024-29069 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In snapd versions prior to 2.62, snapd failed to properly check the de ... |
CVE-2024-29068 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In snapd versions prior to 2.62, snapd failed to properly check the fi ... |
CVE-2024-5138 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | The snapctl component within snapd allows a confined snap to interact ... |
CVE-2024-1724 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In snapd versions prior to 2.62, when using AppArmor for enforcement o ... |
CVE-2023-1523 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Using the TIOCLINUX ioctl request, a malicious snap could inject conte ... |
CVE-2021-3155 | vulnerable (no DSA) | fixed | fixed | fixed | snapd 2.54.2 and earlier created ~/snap directories in user home direc ... |
Bug | Description |
---|---|
CVE-2022-3328 | Race condition in snap-confine's must_mkdir_and_open_with_perms() |
CVE-2021-44731 | A race condition existed in the snapd 2.54.2 snap-confine binary when ... |
CVE-2021-44730 | snapd 2.54.2 did not properly validate the location of the snap-confin ... |
CVE-2021-4120 | snapd 2.54.2 fails to perform sufficient validation of snap content in ... |
CVE-2020-27352 | When generating the systemd service units for the docker snap (and oth ... |
CVE-2020-11934 | It was discovered that snapctl user-open allowed altering the $XDG_DAT ... |
CVE-2019-11503 | snap-confine as included in snapd before 2.39 did not guard against sy ... |
CVE-2019-11502 | snap-confine in snapd before 2.38 incorrectly set the ownership of a s ... |
CVE-2019-7304 | Canonical snapd before version 2.37.1 incorrectly performed socket own ... |
CVE-2019-7303 | A vulnerability in the seccomp filters of Canonical snapd before versi ... |
CVE-2017-14178 | In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to ... |
DSA / DLA | Description |
---|---|
DLA-3215-1 | snapd - security update |
DSA-5292-1 | snapd - security update |
DSA-5080-1 | snapd - security update |
DLA-2527-1 | snapd - security update |