Vulnerabilities (CVE)

Filtered by vendor Canonical Subscribe
Filtered by product Ubuntu-core-launcher
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-1580 1 Canonical 2 Ubuntu-core-launcher, Ubuntu Linux 2024-11-21 10.0 HIGH 9.8 CRITICAL
The setup_snappy_os_mounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to obtain sensitive information or gain privileges via a snap with a name starting with "ubuntu-core."