Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for snapcraft by canonical

    CVE-2020-27348 (GCVE-0-2020-27348)

    Vulnerability from nvd – Published: 2020-12-04 02:30 – Updated: 2024-09-16 17:14
    VLAI
    Title
    snapcraft may build snaps with incorrect LD_LIBRARY_PATH
    Summary
    In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1.
    CWE
    • CWE-427 - Uncontrolled Search Path Element
    Assigner
    References
    Impacted products
    Vendor Product Version
    Canonical snapcraft Affected: 4.4 , < 4.4.4 (custom)
    Affected: 2.43.1 , < 2.43.1+16.04.1 (custom)
    Create a notification for this product.
    Date Public
    2020-12-03 00:00
    Credits
    itszn
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T16:11:36.588Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/snapcore/snapcraft/pull/3345"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/usn/usn-4661-1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugs.launchpad.net/bugs/1901572"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "snapcraft",
              "vendor": "Canonical",
              "versions": [
                {
                  "lessThan": "4.4.4",
                  "status": "affected",
                  "version": "4.4",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "2.43.1+18.04.1",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "2.43.1+16.04.1",
                  "status": "affected",
                  "version": "2.43.1",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "itszn"
            }
          ],
          "datePublic": "2020-12-03T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-427",
                  "description": "CWE-427 Uncontrolled Search Path Element",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-04T02:30:36.000Z",
            "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
            "shortName": "canonical"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/snapcore/snapcraft/pull/3345"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://usn.ubuntu.com/usn/usn-4661-1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugs.launchpad.net/bugs/1901572"
            }
          ],
          "source": {
            "advisory": "https://usn.ubuntu.com/usn/usn-4661-1",
            "defect": [
              "https://bugs.launchpad.net/bugs/1901572"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "snapcraft may build snaps with incorrect LD_LIBRARY_PATH",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@ubuntu.com",
              "DATE_PUBLIC": "2020-12-03T18:16:00.000Z",
              "ID": "CVE-2020-27348",
              "STATE": "PUBLIC",
              "TITLE": "snapcraft may build snaps with incorrect LD_LIBRARY_PATH"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "snapcraft",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "4.4",
                                "version_value": "4.4.4"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "2.43.1",
                                "version_value": "2.43.1+16.04.1"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "2.43.1",
                                "version_value": "2.43.1+18.04.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Canonical"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "itszn"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-427 Uncontrolled Search Path Element"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/snapcore/snapcraft/pull/3345",
                  "refsource": "MISC",
                  "url": "https://github.com/snapcore/snapcraft/pull/3345"
                },
                {
                  "name": "https://usn.ubuntu.com/usn/usn-4661-1",
                  "refsource": "MISC",
                  "url": "https://usn.ubuntu.com/usn/usn-4661-1"
                },
                {
                  "name": "https://bugs.launchpad.net/bugs/1901572",
                  "refsource": "MISC",
                  "url": "https://bugs.launchpad.net/bugs/1901572"
                }
              ]
            },
            "source": {
              "advisory": "https://usn.ubuntu.com/usn/usn-4661-1",
              "defect": [
                "https://bugs.launchpad.net/bugs/1901572"
              ],
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
        "assignerShortName": "canonical",
        "cveId": "CVE-2020-27348",
        "datePublished": "2020-12-04T02:30:36.159Z",
        "dateReserved": "2020-10-20T00:00:00.000Z",
        "dateUpdated": "2024-09-16T17:14:15.768Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-27348 (GCVE-0-2020-27348)

    Vulnerability from cvelistv5 – Published: 2020-12-04 02:30 – Updated: 2024-09-16 17:14
    VLAI
    Title
    snapcraft may build snaps with incorrect LD_LIBRARY_PATH
    Summary
    In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1.
    CWE
    • CWE-427 - Uncontrolled Search Path Element
    Assigner
    References
    Impacted products
    Vendor Product Version
    Canonical snapcraft Affected: 4.4 , < 4.4.4 (custom)
    Affected: 2.43.1 , < 2.43.1+16.04.1 (custom)
    Create a notification for this product.
    Date Public
    2020-12-03 00:00
    Credits
    itszn
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T16:11:36.588Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/snapcore/snapcraft/pull/3345"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/usn/usn-4661-1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bugs.launchpad.net/bugs/1901572"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "snapcraft",
              "vendor": "Canonical",
              "versions": [
                {
                  "lessThan": "4.4.4",
                  "status": "affected",
                  "version": "4.4",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "2.43.1+18.04.1",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "2.43.1+16.04.1",
                  "status": "affected",
                  "version": "2.43.1",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "itszn"
            }
          ],
          "datePublic": "2020-12-03T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-427",
                  "description": "CWE-427 Uncontrolled Search Path Element",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-04T02:30:36.000Z",
            "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
            "shortName": "canonical"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/snapcore/snapcraft/pull/3345"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://usn.ubuntu.com/usn/usn-4661-1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bugs.launchpad.net/bugs/1901572"
            }
          ],
          "source": {
            "advisory": "https://usn.ubuntu.com/usn/usn-4661-1",
            "defect": [
              "https://bugs.launchpad.net/bugs/1901572"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "snapcraft may build snaps with incorrect LD_LIBRARY_PATH",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@ubuntu.com",
              "DATE_PUBLIC": "2020-12-03T18:16:00.000Z",
              "ID": "CVE-2020-27348",
              "STATE": "PUBLIC",
              "TITLE": "snapcraft may build snaps with incorrect LD_LIBRARY_PATH"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "snapcraft",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "4.4",
                                "version_value": "4.4.4"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "2.43.1",
                                "version_value": "2.43.1+16.04.1"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "2.43.1",
                                "version_value": "2.43.1+18.04.1"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Canonical"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "itszn"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In some conditions, a snap package built by snapcraft includes the current directory in LD_LIBRARY_PATH, allowing a malicious snap to gain code execution within the context of another snap if both plug the home interface or similar. This issue affects snapcraft versions prior to 4.4.4, prior to 2.43.1+16.04.1, and prior to 2.43.1+18.04.1."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-427 Uncontrolled Search Path Element"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/snapcore/snapcraft/pull/3345",
                  "refsource": "MISC",
                  "url": "https://github.com/snapcore/snapcraft/pull/3345"
                },
                {
                  "name": "https://usn.ubuntu.com/usn/usn-4661-1",
                  "refsource": "MISC",
                  "url": "https://usn.ubuntu.com/usn/usn-4661-1"
                },
                {
                  "name": "https://bugs.launchpad.net/bugs/1901572",
                  "refsource": "MISC",
                  "url": "https://bugs.launchpad.net/bugs/1901572"
                }
              ]
            },
            "source": {
              "advisory": "https://usn.ubuntu.com/usn/usn-4661-1",
              "defect": [
                "https://bugs.launchpad.net/bugs/1901572"
              ],
              "discovery": "EXTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc",
        "assignerShortName": "canonical",
        "cveId": "CVE-2020-27348",
        "datePublished": "2020-12-04T02:30:36.159Z",
        "dateReserved": "2020-10-20T00:00:00.000Z",
        "dateUpdated": "2024-09-16T17:14:15.768Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }