Skip to content

New security update release 2.54.3
Compare
Choose a tag to compare
@mvo5 mvo5 released this 17 Feb 17:15
· 6391 commits to master since this release
2.54.3
This tag was signed with the committer’s verified signature.
mvo5 Michael Vogt
GPG key ID: 98CABB3ABD4CA59E
Learn about vigilant mode.
c80b318
  • SECURITY UPDATE: Local privilege escalation
    • snap-confine: Add validations of the location of the snap-confine
      binary within snapd.
    • snap-confine: Fix race condition in snap-confine when preparing a
      private mount namespace for a snap.
    • CVE-2021-44730
    • CVE-2021-44731
  • SECURITY UPDATE: Data injection from malicious snaps
    • interfaces: Add validations of snap content interface and layout
      paths in snapd.
    • CVE-2021-4120
    • LP: #1949368
Assets 5