1. Ubuntu Security Notices
  2. USN-3887-1

USN-3887-1: snapd vulnerability

Publication date

12 February 2019

Overview

snapd could be made to run programs as an administrator.

Releases

Packages

  • snapd - Daemon and tooling that enable snap packages

Details

Chris Moberly discovered that snapd versions 2.28 through 2.37 incorrectly
validated and parsed the remote socket address when performing access
controls on its UNIX socket. A local attacker could use this to access
privileged socket APIs and obtain administrator privileges. On Ubuntu
systems with snaps installed, snapd typically will have already
automatically refreshed itself to snapd 2.37.1 which is unaffected.

Chris Moberly discovered that snapd versions 2.28 through 2.37 incorrectly
validated and parsed the remote socket address when performing access
controls on its UNIX socket. A local attacker could use this to access
privileged socket APIs and obtain administrator privileges. On Ubuntu
systems with snaps installed, snapd typically will have already
automatically refreshed itself to snapd 2.37.1 which is unaffected.

Update instructions

In general, a standard system update will make all the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release Package Version
18.10 cosmic snapd –  2.35.5+18.10.1
18.04 bionic snapd –  2.34.2+18.04.1
16.04 xenial snapd –  2.34.2ubuntu0.1
14.04 trusty snapd –  2.34.2~14.04.1

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

Have additional questions?

Talk to a member of the team ›