Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Snapd seccomp filter TIOCSTI ioctl bypass
Vulnerability Description
A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl(2) commands on a 64-bit platform; however, the Linux kernel only uses the lower 32 bits to determine which ioctl(2) commands to run. This issue affects: Canonical snapd versions prior to 2.37.4.
CVSS Information
N/A
Vulnerability Type
使用不正确指定参数的函数调用
Vulnerability Title
Canonical snapd 权限许可和访问控制问题漏洞
Vulnerability Description
Canonical snapd是英国科能(Canonical)公司的一套软件部署和包管理系统。 Canonical snapd 2.37.4之前版本中存在安全漏洞。攻击者可利用该漏洞绕过访问限制并向输入队列中注入字符。
CVSS Information
N/A
Vulnerability Type
N/A