[ubuntu/xenial-security] snapcraft 2.43.1+16.04.1 (Accepted)
Emilia Torino
emilia.torino at canonical.com
Thu Dec 3 18:16:19 UTC 2020
snapcraft (2.43.1+16.04.1) xenial-security; urgency=medium
[ Sergio Schvezov ]
* SECURITY UPDATE: library injection vulnerability on strict mode
snaps built with snapcraft via misconfigured LD_LIBRARY_PATH
- project_loader: do not export empty environment
- meta: do not export empty environment. Warn on empty environment.
- CVE-2020-27348
- LP: #1901572
Date: 2020-12-01 17:47:17.243472+00:00
Changed-By: Emilia Torino <emilia.torino at canonical.com>
https://launchpad.net/ubuntu/+source/snapcraft/2.43.1+16.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list