[ Sergio Schvezov ]
* SECURITY UPDATE: library injection vulnerability on strict mode
snaps built with snapcraft via misconfigured LD_LIBRARY_PATH
- project_loader: do not export empty environment
- meta: do not export empty environment. Warn on empty environment.
- CVE-2020-27348
- LP: #1901572
-- Emilia Torino <email address hidden> Tue, 01 Dec 2020 09:10:42 -0300
This bug was fixed in the package snapcraft - 2.43.1+18.04.1
---------------
snapcraft (2.43.1+18.04.1) bionic-security; urgency=medium
[ Sergio Schvezov ]
* SECURITY UPDATE: library injection vulnerability on strict mode
snaps built with snapcraft via misconfigured LD_LIBRARY_PATH
- project_loader: do not export empty environment
- meta: do not export empty environment. Warn on empty environment.
- CVE-2020-27348
- LP: #1901572
-- Emilia Torino <email address hidden> Tue, 01 Dec 2020 09:10:42 -0300