snap-confine + systemd-tmpfiles = root (CVE-2026-3888)  – Full Disclosure

Posted by Qualys Security Advisory via Fulldisclosure on Mar 19

Qualys Security Advisory

Good things come to those who wait:
snap-confine + systemd-tmpfiles = root (CVE-2026-3888)

========================================================================
Contents
========================================================================

Summary
Case study: Ubuntu Desktop 24.04
– Analysis
– Exploitation
Case study: Ubuntu Desktop 25.10
– Overview
– Exploitation
A quick note on the uutils coreutils (the…
 – Read More  – Full Disclosure