all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

snap-confine must_mkdir_and_open_with_perms() Race Condition

Add to bookmarks
Dec. 9, 2022, 2:42 p.m. |

Packet Storm packetstormsecurity.com

Qualys discovered a race condition (CVE-2022-3328) in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability (which was introduced in February 2022 by the patch for CVE-2021-44731) and detail how they exploited it in Ubuntu Server (a local privilege escalation, from any user to root) by combining it with two vulnerabilities in multipathd (an authorization bypass and a symlink attack, CVE-2022-41974 and CVE-2022-41973).

race condition snap

Visit resource

More from packetstormsecurity.com / Packet Storm

AIDE 0.18.7 1 day, 13 hours ago | packetstormsecurity.com
advanced aide algorithms can +17
Systemd Insecure PTY Handling 1 day, 13 hours ago | packetstormsecurity.com
changing handling high insecure +5
Microsoft PlayReady Toolkit 1 day, 14 hours ago | packetstormsecurity.com
access acquisition client code +19
Docker Privileged Container Kernel Escape 1 day, 14 hours ago | packetstormsecurity.com
can container container escape daemon +9
Gentoo Linux Security Advisory 202405-16 1 day, 14 hours ago | packetstormsecurity.com
advisory apache apache commons can +11
Gentoo Linux Security Advisory 202405-15 1 day, 14 hours ago | packetstormsecurity.com
advisory can code code execution +12
Gentoo Linux Security Advisory 202405-14 1 day, 14 hours ago | packetstormsecurity.com
advisory code code execution gentoo +7
Gentoo Linux Security Advisory 202405-13 1 day, 14 hours ago | packetstormsecurity.com
advisory can gentoo injection +6
Gentoo Linux Security Advisory 202405-12 1 day, 14 hours ago | packetstormsecurity.com
advisory arbitrary code arbitrary code execution can +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Wisk Aero | Remote United States
View on infosec-jobs.com

Vulnerable Adult Investigator - Vice President

@ JPMorgan Chase & Co. | Chicago, IL, United States
View on infosec-jobs.com

Consultant Réseaux IT Digital Impulse - H/F

@ Talan | Paris, France
View on infosec-jobs.com

DevSecOps Engineer (Onsite)

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Senior Security Engineer

@ Minitab | State College, Pennsylvania, United States
View on infosec-jobs.com
View more jobs