x/vulndb: potential Go vuln in github.com/snapcore/snapd: CVE-2024-5138

[tatianab]

CVE-2024-5138 references github.com/snapcore/snapd, which may be a Go module.

Description:
The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of the snap that would normally require administrator privileges to perform. This could possibly allow an unprivileged user to perform a denial of service or similar.

References:

• NIST: https://nvd.nist.gov/vuln/detail/CVE-2024-5138
• JSON: https://github.com/CVEProject/cvelist/tree/e076e9c24f3ede5a41143e706602e9c41139fd45/2024/5xxx/CVE-2024-5138.json
• advisory: https://www.cve.org/CVERecord?id=CVE-2024-5138
• fix: canonical/snapd@68ee9c6
• web: https://bugs.launchpad.net/snapd/+bug/2065077
• web: https://github.com/snapcore/snapd/security/advisories/GHSA-p9v8-q5m4-pf46
• Imported by: https://pkg.go.dev/github.com/snapcore/snapd?tab=importedby

Cross references:

• Module github.com/snapcore/snapd appears in issue x/vulndb: potential Go vuln in github.com/snapcore/snapd: CVE-2023-1523 #2034 EFFECTIVELY_PRIVATE
• Module github.com/snapcore/snapd appears in issue x/vulndb: potential Go vuln in github.com/snapcore/snapd: CVE-2017-14178 #2198 LEGACY_FALSE_POSITIVE
• Module github.com/snapcore/snapd appears in issue x/vulndb: potential Go vuln in github.com/snapcore/snapd: CVE-2019-11503 #2233 LEGACY_FALSE_POSITIVE
• Module github.com/snapcore/snapd appears in issue x/vulndb: potential Go vuln in github.com/snapcore/snapd: GHSA-cjqf-877p-7m3f #2468

See doc/triage.md for instructions on how to triage this report.

id: GO-ID-PENDING
modules:
    - module: github.com/snapcore/snapd
      vulnerable_at: 0.0.0-20240607193835-43d756ca4a5f
      packages:
        - package: snapd
summary: CVE-2024-5138 in github.com/snapcore/snapd
cves:
    - CVE-2024-5138
references:
    - advisory: https://www.cve.org/CVERecord?id=CVE-2024-5138
    - fix: https://github.com/snapcore/snapd/commit/68ee9c6aa916ab87dbfd9a26030690f2cabf1e14
    - web: https://bugs.launchpad.net/snapd/+bug/2065077
    - web: https://github.com/snapcore/snapd/security/advisories/GHSA-p9v8-q5m4-pf46
source:
    id: CVE-2024-5138
    created: 2024-06-07T17:18:07.360555-04:00
review_status: UNREVIEWED

[gopherbot]

Change https://go.dev/cl/592456 mentions this issue: data/reports: add 19 unreviewed reports

[gopherbot]

Change https://go.dev/cl/592457 mentions this issue: data/reports: add 16 unreviewed reports