USN-4728-1
- Source
- https://ubuntu.com/security/notices/USN-4728-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4728-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-4728-1
- Upstream
- Related
- Published
- 2021-02-10T01:14:00Z
- Modified
- 2026-02-10T04:42:03Z
- Summary
- snapd vulnerability
- Details
-
Gilad Reti and Nimrod Stoler discovered that snapd did not correctly specify cgroup delegation when generating systemd service units for various container management snaps. This could allow a local attacker to escalate privileges via access to arbitrary devices of the container host from within a compromised or malicious container.
- References
Affected packages
Ubuntu:16.04:LTS / snapd
Package
- Name
- snapd
- Purl
- pkg:deb/ubuntu/snapd@2.48.3?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.48.3
Affected versions
1.*
1.9
1.9.1.1
1.9.2
2.*
2.0
2.0.1
2.0.2
2.0.3
2.0.5
2.0.8
2.0.9
2.0.10
2.11+0.16.04
2.12+0.16.04
2.13
2.14.2~16.04
2.15.2ubuntu1
2.16ubuntu3
2.17.1ubuntu1
2.20.1ubuntu1
2.21
2.22.2
2.22.3
2.22.6
2.23.1
2.24.1
2.25
2.26.10
2.27.5
2.28.5
2.29.4.2
2.32.3.2
2.32.9
2.33.1ubuntu2
2.34.2
2.34.2ubuntu0.1
2.37.4
2.37.4ubuntu0.1
2.38
2.39.2
2.39.2ubuntu0.2
2.40
2.42.1
2.45.1
2.45.1ubuntu0.2
2.46.1
2.47.1
2.48
Ecosystem specific
{
"binaries": [
{
"binary_name": "golang-github-snapcore-snapd-dev",
"binary_version": "2.48.3"
},
{
"binary_name": "golang-github-ubuntu-core-snappy-dev",
"binary_version": "2.48.3"
},
{
"binary_name": "snap-confine",
"binary_version": "2.48.3"
},
{
"binary_name": "snapd",
"binary_version": "2.48.3"
},
{
"binary_name": "snapd-xdg-open",
"binary_version": "2.48.3"
},
{
"binary_name": "ubuntu-core-launcher",
"binary_version": "2.48.3"
},
{
"binary_name": "ubuntu-core-snapd-units",
"binary_version": "2.48.3"
},
{
"binary_name": "ubuntu-snappy",
"binary_version": "2.48.3"
},
{
"binary_name": "ubuntu-snappy-cli",
"binary_version": "2.48.3"
}
],
"availability": "No subscription required"
}
Database specific
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4728-1.json"
cves_map
{
"ecosystem": "Ubuntu:16.04:LTS",
"cves": [
{
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "high"
}
],
"id": "CVE-2020-27352"
}
]
}
Ubuntu:18.04:LTS / snapd
Package
- Name
- snapd
- Purl
- pkg:deb/ubuntu/snapd@2.48.3+18.04?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.48.3+18.04
Affected versions
2.*
2.28.5+17.10
2.29.4.1+18.04
2.29.4.2+18.04
2.31.1+18.04
2.32+18.04~pre5
2.32+18.04~pre6
2.32+18.04
2.32.3.2+18.04
2.32.5+18.04
2.32.8+18.04
2.32.9+18.04
2.33.1+18.04ubuntu2
2.34.2+18.04
2.34.2+18.04.1
2.37.1+18.04
2.37.1.1+18.04
2.37.4+18.04
2.37.4+18.04.1
2.38+18.04
2.39.2+18.04
2.40+18.04
2.42.1+18.04
2.45.1+18.04
2.45.1+18.04.2
2.46.1+18.04
2.47.1+18.04
2.48+18.04
Ecosystem specific
{
"binaries": [
{
"binary_name": "golang-github-snapcore-snapd-dev",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "golang-github-ubuntu-core-snappy-dev",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "snap-confine",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "snapd",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "snapd-xdg-open",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "ubuntu-core-launcher",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "ubuntu-core-snapd-units",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "ubuntu-snappy",
"binary_version": "2.48.3+18.04"
},
{
"binary_name": "ubuntu-snappy-cli",
"binary_version": "2.48.3+18.04"
}
],
"availability": "No subscription required"
}
Database specific
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4728-1.json"
cves_map
{
"ecosystem": "Ubuntu:18.04:LTS",
"cves": [
{
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "high"
}
],
"id": "CVE-2020-27352"
}
]
}
Ubuntu:20.04:LTS / snapd
Package
- Name
- snapd
- Purl
- pkg:deb/ubuntu/snapd@2.48.3+20.04?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.48.3+20.04
Affected versions
2.*
2.41+19.10.1
2.42.1+20.04
2.43.3+git1.8109f8
2.44~pre1+20.04
2.44+20.04
2.44.2+20.04
2.44.3+20.04
2.45.1+20.04
2.45.1+20.04.2
2.46.1+20.04
2.47.1+20.04
2.48+20.04
Ecosystem specific
{
"binaries": [
{
"binary_name": "golang-github-snapcore-snapd-dev",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "golang-github-ubuntu-core-snappy-dev",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "snap-confine",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "snapd",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "snapd-xdg-open",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "ubuntu-core-launcher",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "ubuntu-core-snapd-units",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "ubuntu-snappy",
"binary_version": "2.48.3+20.04"
},
{
"binary_name": "ubuntu-snappy-cli",
"binary_version": "2.48.3+20.04"
}
],
"availability": "No subscription required"
}
Database specific
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4728-1.json"
cves_map
{
"ecosystem": "Ubuntu:20.04:LTS",
"cves": [
{
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"
},
{
"type": "Ubuntu",
"score": "high"
}
],
"id": "CVE-2020-27352"
}
]
}