Close Menu
    What's Hot

    Oil giant BP shutters its corporate venture arm after 20 years

    Chevron and Iraq seek to bypass Strait of Hormuz with Syria pipeline

    Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories

    Facebook X (Twitter) Instagram
    Trending
    • Oil giant BP shutters its corporate venture arm after 20 years
    • Chevron and Iraq seek to bypass Strait of Hormuz with Syria pipeline
    • Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories
    • This Meta study shows AI chatbots could be spreading restrictions on free expression
    • Opinion | Falling Birthrates and America’s Future
    • Republican Senator Thom Tillis Demands Todd Blanche Meet With Epstein Survivors
    • To Defend Europe, German Military Power Needs to Go It Alone
    • How the NYT Reported on Khamenei’s Funeral in Iran
    interluknewsinterluknews
    • Home
    • Business
      • Corporate News
      • Industry Insights
      • Startups & Entrepreneurship
      • Technology & Innovation
    • Economy
      • Economic Policy
      • Financial Analysis
      • Inflation & Interest Rates
      • Trade & Markets
    • Global
      • Conflicts & Security
      • Diplomacy
      • Global Trends
      • International Affairs
    • Lifestyle
      • Fashion
      • Food & Dining
      • Personal Development
      • Travel
    • Opinion
      • Columns
      • Editorials
      • Expert Opinions
      • Reader Voices
    • More
      • Politics
        • Elections
        • Government & Policy
        • International Relations
        • Political Analysis
      • Sports
        • Cricket
        • Football / Soccer
        • International Sports
        • Local Sports
      • Technology
        • Artificial Intelligence
        • Cybersecurity
        • Gadgets & Reviews
        • Tech News
      • South Africa News
    Facebook X (Twitter) Instagram
    interluknewsinterluknews
    Cybersecurity

    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

    adminBy adminMarch 18, 2026No Comments3 Mins Read
    Share Facebook Twitter Pinterest Copy Link Telegram LinkedIn Tumblr Email
    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Ravie LakshmananMar 18, 2026Linux / Endpoint Security

    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

    A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and later could be exploited to escalate privileges to the root level.

    Tracked as CVE-2026-3888 (CVSS score: 7.8), the issue could allow an attacker to seize control of a susceptible system.

    “This flaw (CVE-2026-3888) allows an unprivileged local attacker to escalate privileges to full root access through the interaction of two standard system components: snap-confine and systemd-tmpfiles,” the Qualys Threat Research Unit (TRU) said. “While the exploit requires a specific time-based window (10–30 days), the resulting impact is a complete compromise of the host system.” 

    The problem, Qualys noted, stems from the unintended interaction of snap-confine, which manages execution environments for snap applications by creating a sandbox, and systemd-tmpfiles, which automatically cleans up temporary files and directories (e.g.,/tmp, /run, and /var/tmp) older than a defined threshold.

    Cybersecurity

    The vulnerability has been patched in the following versions –

    • Ubuntu 24.04 LTS – snapd versions prior to 2.73+ubuntu24.04.1
    • Ubuntu 25.10 LTS – snapd versions prior to 2.73+ubuntu25.10.1
    • Ubuntu 26.04 LTS (Dev) – snapd versions prior to 2.74.1+ubuntu26.04.1
    • Upstream snapd – versions prior to 2.75

    The attack requires low privileges and no user interaction, although the attack complexity is high due to the time-delay mechanism in the exploit chain.

    “In default configurations, systemd-tmpfiles is scheduled to remove stale data in /tmp,” Qualys said. “An attacker can exploit this by manipulating the timing of these cleanup cycles.”

    The attack plays out in the following manner –

    • The attacker must wait for the system’s cleanup daemon to delete a critical directory (/tmp/.snap) required by snap-confine. The default period is 30 days in Ubuntu 24.04 and 10 days in later versions.
    • Once deleted, the attacker recreates the directory with malicious payloads.
    • During the next sandbox initialization, snap-confine bind mounts these files as root, allowing the execution of arbitrary code within the privileged context.
    Cybersecurity

    In addition, Qualys said it discovered a race condition flaw in the uutils coreutils package that allows an unprivileged local attacker to replace directory entries with symbolic links (aka symlinks) during root-owned cron executions.

    “Successful exploitation could lead to arbitrary file deletion as root or further privilege escalation by targeting snap sandbox directories,” the cybersecurity company said. “The vulnerability was reported and mitigated prior to the public release of Ubuntu 25.10. The default rm command in Ubuntu 25.10 was reverted to GNU coreutils to mitigate this risk immediately. Upstream fixes have since been applied to the uutils repository.”

    Attackers bug Cleanup CVE20263888 Exploit Gain Lets root systemd timing Ubuntu
    Follow on Google News Follow on Flipboard
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
    Previous ArticleIsrael strike on Lebanon apartment kills six, taking death toll to 912
    Next Article NIT tournament bracket, scores: No. 1 seeds Auburn, Tulsa survive upset bids
    admin
    • Website

    Related Posts

    Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories

    July 16, 2026

    n8n Token Exchange Flaw Could Let Attackers Log In as Users From Another Issuer

    July 16, 2026

    New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands

    July 16, 2026
    Leave A Reply Cancel Reply

    Demo
    Latest Posts

    Oil giant BP shutters its corporate venture arm after 20 years

    Chevron and Iraq seek to bypass Strait of Hormuz with Syria pipeline

    Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories

    This Meta study shows AI chatbots could be spreading restrictions on free expression

    Latest Posts

    Subscribe to News

    Get the latest sports news from NewsSite about world, sports and politics.

    Advertisement
    Demo

    We are a digital news platform delivering timely, accurate, and insightful coverage of politics, global affairs, business, economy, sports, and more. Our mission is to keep readers informed with reliable news, clear analysis, and stories that truly matter.
    We're social. Connect with us:

    Facebook X (Twitter) Instagram Pinterest YouTube

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Type above and press Enter to search. Press Esc to cancel.

    Powered by
    ...
    ►
    Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
    None
    ►
    Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
    None
    ►
    Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
    None
    ►
    Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
    None
    ►
    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
    None
    Powered by