Vulnerability Database
Blog
FAQ
Docs
GHSA-cjqf-877p-7m3f
Source
https://github.com/advisories/GHSA-cjqf-877p-7m3f
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/01/GHSA-cjqf-877p-7m3f/GHSA-cjqf-877p-7m3f.json
Aliases
CVE-2022-3328
Published
2024-01-08T18:30:29Z
Modified
2024-01-12T21:56:39.740752Z
Summary
snapd Race Condition vulnerability
Details
Race condition in snap-confine's must
mkdir
and
open
with_perms()
References
https://nvd.nist.gov/vuln/detail/CVE-2022-3328
https://github.com/snapcore/snapd/pull/12380
https://github.com/snapcore/snapd/commit/21ebc51f00b8a1417888faa2e83a372fd29d0f5e
https://github.com/snapcore/snapd/commit/6226cdc57052f4b7057d92f2e549aa169e35cd2d
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3328
https://github.com/snapcore/snapd
https://ubuntu.com/security/notices/USN-5753-1
Affected packages
Go
/
github.com/snapcore/snapd
Package
Name
github.com/snapcore/snapd
Affected ranges
Type
SEMVER
Events
Introduced
0
The exact introduced commit is unknown
Fixed
2.57.6
GHSA-cjqf-877p-7m3f - OSV