Untriaged
Permalink
CVE-2023-1523
10.0 CRITICAL
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): CHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Using the TIOCLINUX ioctl request, a malicious snap could inject …
Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. Graphical terminal emulators like xterm, gnome-terminal and others are not affected - this can only be exploited when snaps are run on a virtual console.
References
- https://ubuntu.com/security/notices/USN-6125-1 vendor-advisory
- https://github.com/snapcore/snapd/pull/12849 issue-tracking
- https://marc.info/?l=oss-security&m=167879021709955&w=2 mailing-list
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1523 issue-tracking
- https://marc.info/?l=oss-security&m=167879021709955&w=2 mailing-list x_transferred
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1523 issue-tracking x_transferred
- https://ubuntu.com/security/notices/USN-6125-1 vendor-advisory x_transferred
- https://github.com/snapcore/snapd/pull/12849 issue-tracking x_transferred
- https://ubuntu.com/security/notices/USN-6125-1 vendor-advisory
- https://github.com/snapcore/snapd/pull/12849 issue-tracking
- https://marc.info/?l=oss-security&m=167879021709955&w=2 mailing-list
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1523 issue-tracking
- https://marc.info/?l=oss-security&m=167879021709955&w=2 mailing-list x_transferred
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1523 issue-tracking x_transferred
- https://ubuntu.com/security/notices/USN-6125-1 vendor-advisory x_transferred
- https://github.com/snapcore/snapd/pull/12849 issue-tracking x_transferred
Affected products
snapd
- ==2.59.5
Matching in nixpkgs
pkgs.snapdragon-profiler
Profiler for Android devices running Snapdragon chips
-
nixos-unstable -
- nixpkgs-unstable 2021.2