CVE-2021-3155

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-3155

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3155.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-3155

Related

Published

2022-02-17T23:15:07Z

Modified

2024-10-12T07:29:23.910625Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

snapd 2.54.2 and earlier created ~/snap directories in user home directories without specifying owner-only permissions. This could allow a local attacker to read information that should have been private. Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1

References

Affected packages

Debian:11 / snapd

Package

Name: snapd
Purl: pkg:deb/debian/snapd?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.49-1

2.49-1+deb11u1

2.49-1+deb11u2

2.51.7-1

2.51.7-2

2.54.1-1

2.54.3-1

2.54.3-1.1

2.57.6-1

2.59.5-1

2.60.2-1

2.61.1-1

2.61.2-1

2.61.2-2

2.62-1

2.62-2

2.62-3

2.62-4

2.62-5

2.63-1

2.63-2

2.63-3

2.63-4

2.65.1-1

2.65.3-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / snapd

Package

Name: snapd
Purl: pkg:deb/debian/snapd?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.54-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / snapd

Package

Name: snapd
Purl: pkg:deb/debian/snapd?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.54-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/canonical/snapd

Affected ranges

Type: GIT
Repo: https://github.com/canonical/snapd
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

6bcaeeccd16ed8298a301dd92f6907f88c24cc85

Fixed

7d2a966620002149891446a53cf114804808dcca

Type: GIT
Repo: https://github.com/snapcore/snapd
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

c80b318bb4723ef43591afc95bd6d1ceeecba937

Affected versions

0.*

0.1-0ubuntu1

0.2

0.2.10

0.2.11

0.2.12

0.2.13

0.2.3

0.2.4

0.2.8

0.2.9

1.*

1.0-0ubuntu1

1.0.1

1.0.1-0ubuntu1

1.0.10

1.0.11

1.0.12

1.0.13

1.0.14

1.0.15

1.0.16

1.0.17

1.0.2

1.0.20

1.0.21

1.0.22

1.0.23

1.0.24

1.0.25

1.0.25.1

1.0.26

1.0.27

1.0.28

1.0.29

1.0.3

1.0.30

1.0.31

1.0.32

1.0.33

1.0.34

1.0.35

1.0.36

1.0.37

1.0.38

1.0.39

1.0.4

1.0.40

1.0.41

1.0.42

1.0.42.1

1.0.43

1.0.44

1.0.5

1.0.6

1.0.8

1.0.9

1.1-0ubuntu1

1.1.1-0ubuntu1

1.1.2-0ubuntu1

1.2-0ubuntu1

1.3ubuntu1

1.4ubuntu1

1.5ubuntu1

1.6ubuntu1

1.7.2+20160113ubuntu1

1.7.2+20160204ubuntu1

1.7.2+20160223ubuntu1

1.7.2ubuntu1

1.7.3+20160225ubuntu1

1.7.3+20160303ubuntu1

1.7.3+20160303ubuntu2

1.7.3+20160303ubuntu3

1.7.3+20160303ubuntu4

1.7.3+20160308ubuntu1

1.7.3+20160310ubuntu1

1.7ubuntu1

1.9

1.9.1

1.9.2

1.9.3

1.9.4

2.*

2.0

2.0.10

2.0.3

2.0.4

2.0.5

2.0.6

2.0.7

2.0.8

2.0.8.1

2.0.9

2.11

2.12

2.13

2.14

2.14.1

2.14.2.16.04

2.15

2.15.1

2.15.2

2.17

2.17.1

2.18

2.18.1

2.19

2.20

2.20.1

2.21

2.22

2.22.1

2.22.2

2.22.3

2.22.4

2.22.5

2.22.6

2.22.7

2.23

2.23.1

2.24

2.25

2.26

2.26.1

2.26.10

2.26.13

2.26.14

2.26.2

2.26.3

2.26.4

2.26.5

2.26.6

2.26.8

2.26.9

2.27

2.27.1

2.27.2

2.27.3

2.27.4

2.27.5

2.27.6

2.28

2.28.1

2.28.2

2.28.3

2.28.4

2.28.5

2.29

2.29.1

2.29.2

2.29.3

2.29.3.1

2.29.4

2.29.4.1

2.30

2.31

2.31.1

2.31.2

2.32

2.32.1

2.32.2

2.32.3

2.32.3.2

2.32.4

2.32.5

2.32.6

2.32.7

2.32.8

2.32.9

2.33

2.33.1

2.34

2.34.1

2.34.2

2.34.3

2.35

2.35.1

2.35.2

2.35.4

2.35.5

2.36

2.36.1

2.36.2

2.36.3

2.37

2.37.1

2.37.2

2.37.3

2.37.4

2.38

2.38.1

2.39

2.39.1

2.39.2

2.39.3

2.40

2.41

2.41.pre1

2.42

2.42.1

2.42.2

2.42.3

2.42.4

2.42.5

2.43

2.43.1

2.43.2

2.43.3

2.44

2.44.1

2.44.2

2.44.3

2.44.4

2.44.5

2.45

2.45.1

2.45.2

2.45.3

2.45.3.1

2.46

2.46.1

2.47

2.47.1

2.48

2.48.1

2.48.2

2.49

2.49.1

2.49.2

2.50

2.50.1

2.51

2.51.1

2.51.2

2.51.3

2.51.4

2.51.5

2.51.6

2.51.7

2.52

2.52.1

2.53

2.53.1

2.53.2

2.53.3

2.53.4

2.54

2.54.1

2.54.2

Other

ppa

untagged-ec50ee5bfb45daefc236