Forum: Jacob's Hideout BBS

Dark
Log in

Username Password

Ubuntu bug CVE-2026-3888

From Axel@3:633/10 to All on Thursday, March 26, 2026 06:51:25

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup
Timing Exploit

https://thehackernews.com/2026/03/ubuntu-cve-2026-3888-bug-lets-attackers.html?m=1

--
Linux Mint 22.3

--- PyGate Linux v1.5.13
* Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)

From Lawrence D?Oliveiro@3:633/10 to All on Wednesday, March 25, 2026 20:47:12

On Thu, 26 Mar 2026 06:51:25 +1100, Axel wrote:

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd
Cleanup Timing Exploit

https://thehackernews.com/2026/03/ubuntu-cve-2026-3888-bug-lets-attackers.html?m=1

I was wondering why it didn?t affect other distros that also use systemd, including Ubuntu?s parent, Debian:

The problem, Qualys noted, stems from the unintended interaction
of snap-confine, which manages execution environments for snap
applications by creating a sandbox, and systemd-tmpfiles, which
automatically cleans up temporary files and directories
(e.g.,/tmp, /run, and /var/tmp) older than a defined threshold.

--- PyGate Linux v1.5.13
* Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)

From Ralph Fox@3:633/10 to All on Friday, March 27, 2026 16:48:29

On Wed, 25 Mar 2026 20:47:12 -0000 (UTC), Lawrence D?Oliveiro wrote:

On Thu, 26 Mar 2026 06:51:25 +1100, Axel wrote:

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd
Cleanup Timing Exploit

https://thehackernews.com/2026/03/ubuntu-cve-2026-3888-bug-lets-attackers.html?m=1

I was wondering why it didn?t affect other distros that also use systemd, including Ubuntu?s parent, Debian:

The problem, Qualys noted, stems from the unintended interaction
of snap-confine, which manages execution environments for snap
applications by creating a sandbox, and systemd-tmpfiles, which
automatically cleans up temporary files and directories
(e.g.,/tmp, /run, and /var/tmp) older than a defined threshold.

Linux Mint users will also not be affected, not unless they have
re-enabled the Snap Store and installed Snap. Linux Mint disables
the Snap Store by default. <https://www.linuxmint.com/rel_zena.php#:~:text=Snap> <https://linuxmint-user-guide.readthedocs.io/en/latest/snap.html>

--
Kind regards
Ralph Fox
??

Better ones house too little one day, then too big all the year after.

--- PyGate Linux v1.5.13
* Origin: Dragon's Lair, PyGate NNTP<>Fido Gate (3:633/10)

Who's Online
Recent Visitors
- Wang Bu
  Friday, May 01, 2026 22:16:00
  from Manila, Philippines via Telnet
- Guest
  Wednesday, April 29, 2026 07:07:25
  from Tempe, Az via Telnet
- Wang Bu
  Thursday, April 16, 2026 08:46:50
  from Manila, Philippines via Telnet
- Wang Bu
  Tuesday, April 14, 2026 20:50:57
  from Manila, Philippines via HTTPS

System Info

Sysop:	Jacob Catayoc
Location:	Pasay City, Metro Manila, Philippines
Users:	5
Nodes:	4 (0 / 4)
Uptime:	493850:08:32
Calls:	146
Files:	547
D/L today:	6 files (97K bytes)
Messages:	76,914