Unrated severityNVD Advisory· Published Jun 21, 2024· Updated Aug 4, 2024
CVE-2020-27352
CVE-2020-27352
Description
When generating the systemd service units for the docker snap (and other similar snaps), snapd does not specify Delegate=yes - as a result systemd will move processes from the containers created and managed by these snaps into the cgroup of the main daemon within the snap itself when reloading system units. This may grant additional privileges to a container within the snap that were not originally intended.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Canonical Ltd./snapdv5Range: 0
Patches
Vulnerability mechanics
References
3- ubuntu.com/security/notices/USN-4728-1mitrevendor-advisory
- bugs.launchpad.net/snapd/+bug/1910456mitreissue-tracking
- www.cve.org/CVERecordmitreissue-tracking
News mentions
0No linked articles in our index yet.