Critical severityNVD Advisory· Published Jan 8, 2024· Updated Jun 3, 2025
CVE-2022-3328
CVE-2022-3328
Description
Race condition in snap-confine's must_mkdir_and_open_with_perms()
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/snapcore/snapdGo | < 2.57.6 | 2.57.6 |
Affected products
2- Canonical Ltd./snapdv5Range: 0
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
7- github.com/advisories/GHSA-cjqf-877p-7m3fghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-3328ghsaADVISORY
- ubuntu.com/security/notices/USN-5753-1ghsathird-party-advisoryWEB
- cve.mitre.org/cgi-bin/cvename.cgighsaissue-trackingWEB
- github.com/snapcore/snapd/commit/21ebc51f00b8a1417888faa2e83a372fd29d0f5eghsaWEB
- github.com/snapcore/snapd/commit/6226cdc57052f4b7057d92f2e549aa169e35cd2dghsaWEB
- github.com/snapcore/snapd/pull/12380ghsaWEB
News mentions
0No linked articles in our index yet.