← volver
CVE-2016-1580

CVE-2016-1580

EPSS 3.5%
The setup_snappy_os_mounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugs.launchpad.net/ubuntu/+source/ubuntu-core-launcher/+bug/1576699http://www.ubuntu.com/usn/USN-2956-1