{"id":"USN-8102-2","summary":"snapd regression","details":"USN-8102-1 fixed a vulnerability in snapd. The update caused a regresision for\nUbuntu 24.04 LTS while installing the package. This update fixes the problem.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\nQualys discovered that snapd incorrectly handled certain operations in the\nsnap's private /tmp directory. If systemd-tmpfiles is enabled to automatically\nclean up this directory, a local attacker could possibly use this issue to\nre-create the deleted directory, resulting in privilege escalation.\n","modified":"2026-04-27T18:37:56.931547Z","published":"2026-03-17T22:33:11Z","related":["UBUNTU-CVE-2026-3888"],"upstream":["CVE-2026-3888","UBUNTU-CVE-2026-3888"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8102-2"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-3888"},{"type":"REPORT","url":"https://launchpad.net/bugs/2144728"}],"affected":[{"package":{"name":"snapd","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/snapd@2.73+ubuntu24.04.2?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.73+ubuntu24.04.2"}]}],"versions":["2.60.4+23.10","2.61.3+24.04","2.62+24.04build1","2.63+24.04","2.63+24.04ubuntu0.1","2.63.1+24.04","2.65.3+24.04","2.66.1+24.04","2.67.1+24.04","2.68.5+ubuntu24.04.1","2.71+ubuntu24.04","2.72+ubuntu24.04","2.73+ubuntu24.04","2.73+ubuntu24.04.1"],"ecosystem_specific":{"binaries":[{"binary_name":"golang-github-snapcore-snapd-dev","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"golang-github-ubuntu-core-snappy-dev","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"snap-confine","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"snapd","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"snapd-xdg-open","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"ubuntu-core-launcher","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"ubuntu-core-snapd-units","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"ubuntu-snappy","binary_version":"2.73+ubuntu24.04.2"},{"binary_name":"ubuntu-snappy-cli","binary_version":"2.73+ubuntu24.04.2"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8102-2.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}],"id":"CVE-2026-3888"}]}}}],"schema_version":"1.7.5"}