Vulnerabilities > Canonical > Snapd > 2.60.3

DATE CVE VULNERABILITY TITLE RISK
2024-07-25 CVE-2024-29068 Unspecified vulnerability in Canonical Snapd
In snapd versions prior to 2.62, snapd failed to properly check the file type when extracting a snap.
local
low complexity
canonical
6.6
2024-07-25 CVE-2024-29069 Link Following vulnerability in Canonical Snapd
In snapd versions prior to 2.62, snapd failed to properly check the destination of symbolic links when extracting a snap.
local
low complexity
canonical CWE-59
7.3
2024-07-25 CVE-2024-1724 Incorrect Permission Assignment for Critical Resource vulnerability in Canonical Snapd
In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path.
local
low complexity
canonical CWE-732
8.2
2024-01-08 CVE-2022-3328 Race Condition vulnerability in Canonical Snapd and Ubuntu Linux
Race condition in snap-confine's must_mkdir_and_open_with_perms()
local
high complexity
canonical CWE-362
7.0