stable

snapd-2.54.3-1.el9

FEDORA-EPEL-2022-19187e8443 created by bboozzoo 12 months ago for Fedora EPEL 9

Update to 2.54.3. Cherry pick misc SELinux policy fixes. Fixes for CVE-2021-44731, CVE-2021-44730, CVE-2021-4120.

This update has been submitted for testing by bboozzoo.

12 months ago

This update's test gating status has been changed to 'ignored'.

12 months ago

This update has been pushed to testing.

12 months ago

bboozzoo edited this update.

12 months ago

ngompa edited this update.

12 months ago
User Icon ngompa provided feedback 12 months ago
karma
BZ#2056058 CVE-2021-44731 snapd: Race condition in snap-confine's setup_private_mount()
BZ#2056059 CVE-2021-44731 snapd: Race condition in snap-confine's setup_private_mount() [epel-all]
BZ#2056061 CVE-2021-44730 snapd: Hardlink attack in snap-confine's sc_open_snapd_tool()
BZ#2056062 CVE-2021-44730 snapd: Hardlink attack in snap-confine's sc_open_snapd_tool() [epel-all]
BZ#2056065 CVE-2021-4120 snapd: Insufficient validation of snap content interface and layout paths
BZ#2056066 CVE-2021-4120 snapd: Insufficient validation of snap content interface and layout paths [epel-all]

This update has been submitted for stable by bodhi.

12 months ago

This update has been pushed to stable.

12 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
1
Signed
Content Type
RPM
Test Gating
Builds
1
snapd-2.54.3-1.el9
Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
12 months ago
in testing
12 months ago
in stable
12 months ago
modified
12 months ago
BZ#2056058 CVE-2021-44731 snapd: Race condition in snap-confine's setup_private_mount()
0
1
BZ#2056059 CVE-2021-44731 snapd: Race condition in snap-confine's setup_private_mount() [epel-all]
0
1
BZ#2056061 CVE-2021-44730 snapd: Hardlink attack in snap-confine's sc_open_snapd_tool()
0
1
BZ#2056062 CVE-2021-44730 snapd: Hardlink attack in snap-confine's sc_open_snapd_tool() [epel-all]
0
1
BZ#2056065 CVE-2021-4120 snapd: Insufficient validation of snap content interface and layout paths
0
1
BZ#2056066 CVE-2021-4120 snapd: Insufficient validation of snap content interface and layout paths [epel-all]
0
1
snapd-2.54.3-1.el9

Automated Test Results

ignored

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-68-r4xpc.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy