Dirty Sock Linux Privilege Escalation Vulnerability

A security researcher has released details of a vulnerability in the snapd daemon used to manage Canonical 'Snap' packages.

Threat ID:: CC-2936
Category:
Threat Severity:: Low
Threat Vector:
Published:: 14 February 2019 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

A security researcher has released details of a vulnerability in the snapd daemon used to manage Canonical 'Snap' packages.

Threat details

They claim a local authenticated threat actor could exploit this vulnerability to obtain administrative privileges on an affected system.

The vulnerability is a result of the snapd daemon incorrectly parsing and validating the identities of users attempting to make connections via a remote socket. A user-controlled socket may be able to alter the user identities to gain access to the restricted API, at which point they would be able to escalate their privileges.

For further information:

Remediation steps

Type	Step
	Canonical addressed this vulnerability in version 2.37.1 of snapd. Users and administrators are encouraged to apply this update immediately.

Last edited: 14 February 2020 2:53 pm