In today's edition, we'll focus on patching the vulnerability CVE-2024-29068 affecting snapd package on ubuntu 22.04.

To check if this patch is relevant to you:

• Check Ubuntu Version
  • Open a terminal on your Ubuntu system and run the following command “lsb_release -a”
  • This command will display detailed information about your Ubuntu system, including the version number. Ensure that the output shows "22.04" as the version.
• Verify snapd Version
  • Open a terminal on your Ubuntu system and run the following command “dpkg -l | grep snapd”
  • This command will show the current version of snapd package installed on your Ubuntu system. Verify that the version is "2.63+22.04".

For further information and support related to this patch, please refer to the support page.

Patch Details 

Patch Deployment with SecOps Patch Management

Manual Patch deployment

‍1. Download from Ubuntu Repository

• Open a terminal and update your package repository by running the following command: “sudo apt update”
• Upgrade snapd to the latest version using the following command: “sudo apt upgrade snapd”

2. Using Manual Download

• Visit the Ubuntu archive repository to download snapd 2.63+22.04ubuntu0.1 for Ubuntu 22.04.
• Install the downloaded package using the following command: “sudo dpkg -i snapd_2.63+22.04ubuntu0.1_amd64.deb”‍
• If there are any dependency issues, resolve them using the following command: “sudo snapd --fix-broken install”‍
• Validate Patch Deployment: using the following command: “dpkg -l | grep snapd”

‍3. Verify that snapd is now at version 2.63+22.04ubuntu0.1.

By following these steps, you can ensure that the vulnerability “CVE-2024-29068” is mitigated on your system.

Important Note:

1. There are several key things to remember while deploying a patch. It is crucial to download the correct patch file that has been released for your system’s architecture, Operating System, and Build Version
2. It is crucial that you follow the right process or supply the correct commands while installing the patch
3. Understand if the patch requires a reboot of the system or not. If yes make sure to perform a reboot securely to avoid system corruption

‍

SecOps Solution is a Full-stack Patch and Vulnerability Management Platform that helps organizations identify, prioritize, and remediate security vulnerabilities and misconfigurations in seconds.‍
‍To learn more, get in touch.