What is the severity of CVE-2023-1523?

The severity of CVE-2023-1523 is critical with a severity value of 10.

Which software is affected by CVE-2023-1523?

The affected software is snapd, specifically versions 2.58+18.04.1, 2.58+20.04.1, 2.58+22.04.1, 2.58+22.10.1, 2.59.1+23.04ubuntu1.1, 2.59.5-1, and 2.54.3+16.04.0ubuntu0.1~.

How can a malicious snap exploit CVE-2023-1523?

By using the TIOCLINUX ioctl request, a malicious snap can inject arbitrary contents into the input of the controlling terminal, allowing it to execute arbitrary commands outside of the snap sandbox after the snap exits.

What are the affected versions of Ubuntu for CVE-2023-1523?

The affected versions of Ubuntu are 16.04, 18.04, 20.04, 22.04, and 22.10.

How can I fix CVE-2023-1523?

To fix CVE-2023-1523, update snapd to version 2.58+18.04.1, 2.58+20.04.1, 2.58+22.04.1, 2.58+22.10.1, 2.59.1+23.04ubuntu1.1, 2.59.5-1, or 2.54.3+16.04.0ubuntu0.1~ depending on your system's version.

Vulnerability/
CVE-2023-1523

critical

CWE

25/5/2023

8/9/2023

CVE-2023-1523

First published: Thu May 25 2023(Updated: )

Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. Graphical terminal emulators like xterm, gnome-terminal and others are not affected - this can only be exploited when snaps are run on a virtual console.

Credit: security@ubuntu.com security@ubuntu.com security@ubuntu.com

Affected Software	Affected Version	How to fix
Canonical snapd	<2.59.5
Canonical Ubuntu Linux	=16.04
Canonical Ubuntu Linux	=18.04
Canonical Ubuntu Linux	=20.04
Canonical Ubuntu Linux	=22.04
Canonical Ubuntu Linux	=22.10
Canonical Ubuntu Linux	=23.04
ubuntu/snapd	<2.58+20.04.1	2.58+20.04.1
ubuntu/snapd	<2.58+22.04.1	2.58+22.04.1
ubuntu/snapd	<2.58+22.10.1	2.58+22.10.1
ubuntu/snapd	<2.59.1+23.04ubuntu1.1	2.59.1+23.04ubuntu1.1
ubuntu/snapd	<2.59.5-1	2.59.5-1
ubuntu/snapd	<2.54.3+16.04.0ubuntu0.1~	2.54.3+16.04.0ubuntu0.1~
ubuntu/snapd	<2.58+18.04.1	2.58+18.04.1
debian/snapd	<=2.37.4-1+deb10u1<=2.37.4-1+deb10u3<=2.49-1+deb11u2<=2.57.6-1	2.61.1-1

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

USN-6125-1

Frequently Asked Questions

What is the severity of CVE-2023-1523?
The severity of CVE-2023-1523 is critical with a severity value of 10.
Which software is affected by CVE-2023-1523?
The affected software is snapd, specifically versions 2.58+18.04.1, 2.58+20.04.1, 2.58+22.04.1, 2.58+22.10.1, 2.59.1+23.04ubuntu1.1, 2.59.5-1, and 2.54.3+16.04.0ubuntu0.1~.
How can a malicious snap exploit CVE-2023-1523?
By using the TIOCLINUX ioctl request, a malicious snap can inject arbitrary contents into the input of the controlling terminal, allowing it to execute arbitrary commands outside of the snap sandbox after the snap exits.
What are the affected versions of Ubuntu for CVE-2023-1523?
The affected versions of Ubuntu are 16.04, 18.04, 20.04, 22.04, and 22.10.
How can I fix CVE-2023-1523?
To fix CVE-2023-1523, update snapd to version 2.58+18.04.1, 2.58+20.04.1, 2.58+22.04.1, 2.58+22.10.1, 2.59.1+23.04ubuntu1.1, 2.59.5-1, or 2.54.3+16.04.0ubuntu0.1~ depending on your system's version.

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/launchpad-cve
source/Launchpad
collector/nvd-api
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
collector/nvd-index
collector/security-tracker-debian
source/Debian
collector/usn-cve
source/Ubuntu
vendor/canonical
canonical/canonical snapd
canonical/canonical ubuntu linux
version/canonical ubuntu linux/16.04
version/canonical ubuntu linux/18.04
version/canonical ubuntu linux/20.04
version/canonical ubuntu linux/22.04
version/canonical ubuntu linux/22.10
version/canonical ubuntu linux/23.04
package-manager/debian
package-manager/ubuntu