Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2021-4120

HistoryFeb 17, 2022 - 11:15 p.m.

CVE-2021-4120

2022-02-1723:15:07

Debian Security Bug Tracker

security-tracker.debian.org

cve-2021-4120

vulnerability

snapd

validation

escape

snap confinement

apparmor

policy rules

content interface

layout paths

unix

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

EPSS

0.001

Percentile

34.4%

JSON

snapd 2.54.2 fails to perform sufficient validation of snap content interface and layout paths, resulting in the ability for snaps to inject arbitrary AppArmor policy rules via malformed content interface and layout declarations and hence escape strict snap confinement. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

OSVersionArchitecturePackageVersionFilename
Debian12allsnapd< 2.54.3-1snapd_2.54.3-1_all.deb
Debian11allsnapd< 2.49-1+deb11u1snapd_2.49-1+deb11u1_all.deb
Debian999allsnapd< 2.54.3-1snapd_2.54.3-1_all.deb
Debian13allsnapd< 2.54.3-1snapd_2.54.3-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	snapd	< 2.54.3-1	snapd_2.54.3-1_all.deb
Debian	11	all	snapd	< 2.49-1+deb11u1	snapd_2.49-1+deb11u1_all.deb
Debian	999	all	snapd	< 2.54.3-1	snapd_2.54.3-1_all.deb
Debian	13	all	snapd	< 2.54.3-1	snapd_2.54.3-1_all.deb