CVE-2019-7304

Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37.1.

Published : 2019-04-23 16:29 Updated : 2019-10-09 23:52

10.0
CVSS Score More info
Score 10.0 / 10
10.0
Vendor Product Version URI
Canonical Ubuntu Linux 14.04 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 18.04 cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~
Canonical Ubuntu Linux 18.10 cpe:/o:canonical:ubuntu_linux:18.10
Canonical Snapd 0.2 cpe:/a:canonical:snapd:0.2
Canonical Snapd 0.2.3 cpe:/a:canonical:snapd:0.2.3
Canonical Snapd 0.2.4 cpe:/a:canonical:snapd:0.2.4
Canonical Snapd 0.2.8 cpe:/a:canonical:snapd:0.2.8
Canonical Snapd 0.2.9 cpe:/a:canonical:snapd:0.2.9
Canonical Snapd 0.2.10 cpe:/a:canonical:snapd:0.2.10
Canonical Snapd 0.2.11 cpe:/a:canonical:snapd:0.2.11
Canonical Snapd 0.2.12 cpe:/a:canonical:snapd:0.2.12
Canonical Snapd 0.2.13 cpe:/a:canonical:snapd:0.2.13
Canonical Snapd 1.0.1 cpe:/a:canonical:snapd:1.0.1
Canonical Snapd 1.0.2 cpe:/a:canonical:snapd:1.0.2
Canonical Snapd 1.0.3 cpe:/a:canonical:snapd:1.0.3
Canonical Snapd 1.0.4 cpe:/a:canonical:snapd:1.0.4
Canonical Snapd 1.0.5 cpe:/a:canonical:snapd:1.0.5
Canonical Snapd 1.0.6 cpe:/a:canonical:snapd:1.0.6
Canonical Snapd 1.0.8 cpe:/a:canonical:snapd:1.0.8
Canonical Snapd 1.0.9 cpe:/a:canonical:snapd:1.0.9
Canonical Snapd 1.0.10 cpe:/a:canonical:snapd:1.0.10
Canonical Snapd 1.0.11 cpe:/a:canonical:snapd:1.0.11
Canonical Snapd 1.0.12 cpe:/a:canonical:snapd:1.0.12
Canonical Snapd 1.0.13 cpe:/a:canonical:snapd:1.0.13
Canonical Snapd 1.0.14 cpe:/a:canonical:snapd:1.0.14
Canonical Snapd 1.0.15 cpe:/a:canonical:snapd:1.0.15
Canonical Snapd 1.0.16 cpe:/a:canonical:snapd:1.0.16
Canonical Snapd 1.0.17 cpe:/a:canonical:snapd:1.0.17
Canonical Snapd 1.0.20 cpe:/a:canonical:snapd:1.0.20
Canonical Snapd 1.0.21 cpe:/a:canonical:snapd:1.0.21
Canonical Snapd 1.0.22 cpe:/a:canonical:snapd:1.0.22
Canonical Snapd 1.0.23 cpe:/a:canonical:snapd:1.0.23
Canonical Snapd 1.0.24 cpe:/a:canonical:snapd:1.0.24
Canonical Snapd 1.0.25 cpe:/a:canonical:snapd:1.0.25
Canonical Snapd 1.0.25.1 cpe:/a:canonical:snapd:1.0.25.1
Canonical Snapd 1.0.26 cpe:/a:canonical:snapd:1.0.26
Canonical Snapd 1.0.27 cpe:/a:canonical:snapd:1.0.27
Canonical Snapd 1.0.28 cpe:/a:canonical:snapd:1.0.28
Canonical Snapd 1.0.29 cpe:/a:canonical:snapd:1.0.29
Canonical Snapd 1.0.30 cpe:/a:canonical:snapd:1.0.30
Canonical Snapd 1.0.31 cpe:/a:canonical:snapd:1.0.31
Canonical Snapd 1.0.32 cpe:/a:canonical:snapd:1.0.32
Canonical Snapd 1.0.33 cpe:/a:canonical:snapd:1.0.33
Canonical Snapd 1.0.34 cpe:/a:canonical:snapd:1.0.34
Canonical Snapd 1.0.35 cpe:/a:canonical:snapd:1.0.35
Canonical Snapd 1.0.36 cpe:/a:canonical:snapd:1.0.36
Canonical Snapd 1.0.37 cpe:/a:canonical:snapd:1.0.37
Canonical Snapd 1.0.38 cpe:/a:canonical:snapd:1.0.38
Canonical Snapd 1.0.39 cpe:/a:canonical:snapd:1.0.39
Canonical Snapd 1.0.40 cpe:/a:canonical:snapd:1.0.40
Canonical Snapd 1.0.41 cpe:/a:canonical:snapd:1.0.41
Canonical Snapd 1.0.42 cpe:/a:canonical:snapd:1.0.42
Canonical Snapd 1.0.42.1 cpe:/a:canonical:snapd:1.0.42.1
Canonical Snapd 1.0.43 cpe:/a:canonical:snapd:1.0.43
Canonical Snapd 1.0.44 cpe:/a:canonical:snapd:1.0.44
Canonical Snapd 1.9 cpe:/a:canonical:snapd:1.9
Canonical Snapd 1.9.1 cpe:/a:canonical:snapd:1.9.1
Canonical Snapd 1.9.2 cpe:/a:canonical:snapd:1.9.2
Canonical Snapd 1.9.3 cpe:/a:canonical:snapd:1.9.3
Canonical Snapd 1.9.4 cpe:/a:canonical:snapd:1.9.4
Canonical Snapd 1.9.4.1 cpe:/a:canonical:snapd:1.9.4.1
Canonical Snapd 2.0 cpe:/a:canonical:snapd:2.0
Canonical Snapd 2.0.1 cpe:/a:canonical:snapd:2.0.1
Canonical Snapd 2.0.2 cpe:/a:canonical:snapd:2.0.2
Canonical Snapd 2.0.3 cpe:/a:canonical:snapd:2.0.3
Canonical Snapd 2.0.4 cpe:/a:canonical:snapd:2.0.4
Canonical Snapd 2.0.5 cpe:/a:canonical:snapd:2.0.5
Canonical Snapd 2.0.6 cpe:/a:canonical:snapd:2.0.6
Canonical Snapd 2.0.7 cpe:/a:canonical:snapd:2.0.7
Canonical Snapd 2.0.8 cpe:/a:canonical:snapd:2.0.8
Canonical Snapd 2.0.8.1 cpe:/a:canonical:snapd:2.0.8.1
Canonical Snapd 2.0.9 cpe:/a:canonical:snapd:2.0.9
Canonical Snapd 2.0.10 cpe:/a:canonical:snapd:2.0.10
Canonical Snapd 2.11 cpe:/a:canonical:snapd:2.11
Canonical Snapd 2.12 cpe:/a:canonical:snapd:2.12
Canonical Snapd 2.13 cpe:/a:canonical:snapd:2.13
Canonical Snapd 2.14 cpe:/a:canonical:snapd:2.14
Canonical Snapd 2.14.1 cpe:/a:canonical:snapd:2.14.1
Canonical Snapd 2.14.2.16.04 cpe:/a:canonical:snapd:2.14.2.16.04
Canonical Snapd 2.15 cpe:/a:canonical:snapd:2.15
Canonical Snapd 2.15.1 cpe:/a:canonical:snapd:2.15.1
Canonical Snapd 2.15.2 cpe:/a:canonical:snapd:2.15.2
Canonical Snapd 2.16 cpe:/a:canonical:snapd:2.16
Canonical Snapd 2.17 cpe:/a:canonical:snapd:2.17
Canonical Snapd 2.17.1 cpe:/a:canonical:snapd:2.17.1
Canonical Snapd 2.18 cpe:/a:canonical:snapd:2.18
Canonical Snapd 2.18.1 cpe:/a:canonical:snapd:2.18.1
Canonical Snapd 2.19 cpe:/a:canonical:snapd:2.19
Canonical Snapd 2.20 cpe:/a:canonical:snapd:2.20
Canonical Snapd 2.20.1 cpe:/a:canonical:snapd:2.20.1
Canonical Snapd 2.20.1.14.04 cpe:/a:canonical:snapd:2.20.1.14.04
Canonical Snapd 2.21 cpe:/a:canonical:snapd:2.21
Canonical Snapd 2.21.14.04.1 cpe:/a:canonical:snapd:2.21.14.04.1
Canonical Snapd 2.22 cpe:/a:canonical:snapd:2.22
Canonical Snapd 2.22.1 cpe:/a:canonical:snapd:2.22.1
Canonical Snapd 2.22.2 cpe:/a:canonical:snapd:2.22.2
Canonical Snapd 2.22.3 cpe:/a:canonical:snapd:2.22.3
Canonical Snapd 2.22.4 cpe:/a:canonical:snapd:2.22.4
Canonical Snapd 2.22.5 cpe:/a:canonical:snapd:2.22.5
Canonical Snapd 2.22.6 cpe:/a:canonical:snapd:2.22.6
Canonical Snapd 2.22.7 cpe:/a:canonical:snapd:2.22.7
Canonical Snapd 2.23 cpe:/a:canonical:snapd:2.23
Canonical Snapd 2.23.1 cpe:/a:canonical:snapd:2.23.1
Canonical Snapd 2.23.2 cpe:/a:canonical:snapd:2.23.2
Canonical Snapd 2.23.3 cpe:/a:canonical:snapd:2.23.3
Canonical Snapd 2.23.4 cpe:/a:canonical:snapd:2.23.4
Canonical Snapd 2.23.5 cpe:/a:canonical:snapd:2.23.5
Canonical Snapd 2.23.6 cpe:/a:canonical:snapd:2.23.6
Canonical Snapd 2.24 cpe:/a:canonical:snapd:2.24
Canonical Snapd 2.25 cpe:/a:canonical:snapd:2.25
Canonical Snapd 2.26 cpe:/a:canonical:snapd:2.26
Canonical Snapd 2.26.1 cpe:/a:canonical:snapd:2.26.1
Canonical Snapd 2.26.2 cpe:/a:canonical:snapd:2.26.2
Canonical Snapd 2.26.3 cpe:/a:canonical:snapd:2.26.3
Canonical Snapd 2.26.4 cpe:/a:canonical:snapd:2.26.4
Canonical Snapd 2.26.5 cpe:/a:canonical:snapd:2.26.5
Canonical Snapd 2.26.6 cpe:/a:canonical:snapd:2.26.6
Canonical Snapd 2.26.8 cpe:/a:canonical:snapd:2.26.8
Canonical Snapd 2.26.9 cpe:/a:canonical:snapd:2.26.9
Canonical Snapd 2.26.10 cpe:/a:canonical:snapd:2.26.10
Canonical Snapd 2.26.13 cpe:/a:canonical:snapd:2.26.13
Canonical Snapd 2.26.14 cpe:/a:canonical:snapd:2.26.14
Canonical Snapd 2.27 cpe:/a:canonical:snapd:2.27
Canonical Snapd 2.27.1 cpe:/a:canonical:snapd:2.27.1
Canonical Snapd 2.27.2 cpe:/a:canonical:snapd:2.27.2
Canonical Snapd 2.27.3 cpe:/a:canonical:snapd:2.27.3
Canonical Snapd 2.27.4 cpe:/a:canonical:snapd:2.27.4
Canonical Snapd 2.27.5 cpe:/a:canonical:snapd:2.27.5
Canonical Snapd 2.27.6 cpe:/a:canonical:snapd:2.27.6
Canonical Snapd 2.28 cpe:/a:canonical:snapd:2.28
Canonical Snapd 2.28.1 cpe:/a:canonical:snapd:2.28.1
Canonical Snapd 2.28.2 cpe:/a:canonical:snapd:2.28.2
Canonical Snapd 2.28.3 cpe:/a:canonical:snapd:2.28.3
Canonical Snapd 2.28.4 cpe:/a:canonical:snapd:2.28.4
Canonical Snapd 2.28.5 cpe:/a:canonical:snapd:2.28.5
Canonical Snapd 2.29 cpe:/a:canonical:snapd:2.29
Canonical Snapd 2.29.1 cpe:/a:canonical:snapd:2.29.1
Canonical Snapd 2.29.2 cpe:/a:canonical:snapd:2.29.2
Canonical Snapd 2.29.3 cpe:/a:canonical:snapd:2.29.3
Canonical Snapd 2.29.3.1 cpe:/a:canonical:snapd:2.29.3.1
Canonical Snapd 2.29.4 cpe:/a:canonical:snapd:2.29.4
Canonical Snapd 2.29.4.1 cpe:/a:canonical:snapd:2.29.4.1
Canonical Snapd 2.29.4.2 cpe:/a:canonical:snapd:2.29.4.2
Canonical Snapd 2.30 cpe:/a:canonical:snapd:2.30
Canonical Snapd 2.31 cpe:/a:canonical:snapd:2.31
Canonical Snapd 2.31.1 cpe:/a:canonical:snapd:2.31.1
Canonical Snapd 2.31.2 cpe:/a:canonical:snapd:2.31.2
Canonical Snapd 2.32 cpe:/a:canonical:snapd:2.32
Canonical Snapd 2.32.1 cpe:/a:canonical:snapd:2.32.1
Canonical Snapd 2.32.2 cpe:/a:canonical:snapd:2.32.2
Canonical Snapd 2.32.3 cpe:/a:canonical:snapd:2.32.3
Canonical Snapd 2.32.3.1 cpe:/a:canonical:snapd:2.32.3.1
Canonical Snapd 2.32.3.2 cpe:/a:canonical:snapd:2.32.3.2
Canonical Snapd 2.32.4 cpe:/a:canonical:snapd:2.32.4
Canonical Snapd 2.32.5 cpe:/a:canonical:snapd:2.32.5
Canonical Snapd 2.32.6 cpe:/a:canonical:snapd:2.32.6
Canonical Snapd 2.32.7 cpe:/a:canonical:snapd:2.32.7
Canonical Snapd 2.32.8 cpe:/a:canonical:snapd:2.32.8
Canonical Snapd 2.32.9 cpe:/a:canonical:snapd:2.32.9
Canonical Snapd 2.33 cpe:/a:canonical:snapd:2.33
Canonical Snapd 2.33.1 cpe:/a:canonical:snapd:2.33.1
Canonical Snapd 2.34 cpe:/a:canonical:snapd:2.34
Canonical Snapd 2.34.1 cpe:/a:canonical:snapd:2.34.1
Canonical Snapd 2.34.2 cpe:/a:canonical:snapd:2.34.2
Canonical Snapd 2.34.3 cpe:/a:canonical:snapd:2.34.3
Canonical Snapd 2.35 cpe:/a:canonical:snapd:2.35
Canonical Snapd 2.35.1 cpe:/a:canonical:snapd:2.35.1
Canonical Snapd 2.35.2 cpe:/a:canonical:snapd:2.35.2
Canonical Snapd 2.35.3 cpe:/a:canonical:snapd:2.35.3
Canonical Snapd 2.35.4 cpe:/a:canonical:snapd:2.35.4
Canonical Snapd 2.35.5 cpe:/a:canonical:snapd:2.35.5
Canonical Snapd 2.36 cpe:/a:canonical:snapd:2.36
Canonical Snapd 2.36.1 cpe:/a:canonical:snapd:2.36.1
Canonical Snapd 2.36.2 cpe:/a:canonical:snapd:2.36.2
Canonical Snapd 2.36.3 cpe:/a:canonical:snapd:2.36.3
Canonical Snapd 2.37 cpe:/a:canonical:snapd:2.37
  1. Canonical (2) Search CVE
    1. Snapd (173) Search CVE
      1. 0.2
      2. 0.2.3
      3. 0.2.4
      4. 0.2.8
      5. 0.2.9
      6. 0.2.10
      7. 0.2.11
      8. 0.2.12
      9. 0.2.13
      10. 1.0.1
      11. 1.0.2
      12. 1.0.3
      13. 1.0.4
      14. 1.0.5
      15. 1.0.6
      16. 1.0.8
      17. 1.0.9
      18. 1.0.10
      19. 1.0.11
      20. 1.0.12
      21. 1.0.13
      22. 1.0.14
      23. 1.0.15
      24. 1.0.16
      25. 1.0.17
      26. 1.0.20
      27. 1.0.21
      28. 1.0.22
      29. 1.0.23
      30. 1.0.24
      31. 1.0.25
      32. 1.0.25.1
      33. 1.0.26
      34. 1.0.27
      35. 1.0.28
      36. 1.0.29
      37. 1.0.30
      38. 1.0.31
      39. 1.0.32
      40. 1.0.33
      41. 1.0.34
      42. 1.0.35
      43. 1.0.36
      44. 1.0.37
      45. 1.0.38
      46. 1.0.39
      47. 1.0.40
      48. 1.0.41
      49. 1.0.42
      50. 1.0.42.1
      51. 1.0.43
      52. 1.0.44
      53. 1.9
      54. 1.9.1
      55. 1.9.2
      56. 1.9.3
      57. 1.9.4
      58. 1.9.4.1
      59. 2.0
      60. 2.0.1
      61. 2.0.2
      62. 2.0.3
      63. 2.0.4
      64. 2.0.5
      65. 2.0.6
      66. 2.0.7
      67. 2.0.8
      68. 2.0.8.1
      69. 2.0.9
      70. 2.0.10
      71. 2.11
      72. 2.12
      73. 2.13
      74. 2.14
      75. 2.14.1
      76. 2.14.2.16.04
      77. 2.15
      78. 2.15.1
      79. 2.15.2
      80. 2.16
      81. 2.17
      82. 2.17.1
      83. 2.18
      84. 2.18.1
      85. 2.19
      86. 2.20
      87. 2.20.1
      88. 2.20.1.14.04
      89. 2.21
      90. 2.21.14.04.1
      91. 2.22
      92. 2.22.1
      93. 2.22.2
      94. 2.22.3
      95. 2.22.4
      96. 2.22.5
      97. 2.22.6
      98. 2.22.7
      99. 2.23
      100. 2.23.1
      101. 2.23.2
      102. 2.23.3
      103. 2.23.4
      104. 2.23.5
      105. 2.23.6
      106. 2.24
      107. 2.25
      108. 2.26
      109. 2.26.1
      110. 2.26.2
      111. 2.26.3
      112. 2.26.4
      113. 2.26.5
      114. 2.26.6
      115. 2.26.8
      116. 2.26.9
      117. 2.26.10
      118. 2.26.13
      119. 2.26.14
      120. 2.27
      121. 2.27.1
      122. 2.27.2
      123. 2.27.3
      124. 2.27.4
      125. 2.27.5
      126. 2.27.6
      127. 2.28
      128. 2.28.1
      129. 2.28.2
      130. 2.28.3
      131. 2.28.4
      132. 2.28.5
      133. 2.29
      134. 2.29.1
      135. 2.29.2
      136. 2.29.3
      137. 2.29.3.1
      138. 2.29.4
      139. 2.29.4.1
      140. 2.29.4.2
      141. 2.30
      142. 2.31
      143. 2.31.1
      144. 2.31.2
      145. 2.32
      146. 2.32.1
      147. 2.32.2
      148. 2.32.3
      149. 2.32.3.1
      150. 2.32.3.2
      151. 2.32.4
      152. 2.32.5
      153. 2.32.6
      154. 2.32.7
      155. 2.32.8
      156. 2.32.9
      157. 2.33
      158. 2.33.1
      159. 2.34
      160. 2.34.1
      161. 2.34.2
      162. 2.34.3
      163. 2.35
      164. 2.35.1
      165. 2.35.2
      166. 2.35.3
      167. 2.35.4
      168. 2.35.5
      169. 2.36
      170. 2.36.1
      171. 2.36.2
      172. 2.36.3
      173. 2.37
    2. Ubuntu Linux (4) Search CVE
      1. 14.04
      2. 16.04
      3. 18.04
      4. 18.10

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2019-10-09 23:52
2019-04-30 13:36
2019-04-23 16:29

New CVE