CVE-2022-4968 – Ubuntu Security Notice USN-6851-1

https://notcve.org/view.php?id=CVE-2022-4968

07 Jun 2024 — netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected. netplan filtra la clave privada de wireguard a los usuarios locales. Pronto se publicará una solución de seguridad. Andreas Hasenack discovered that netplan incorrectly handled the permissions for netdev files containing wireguard configuration. An attacker could use this to obtain wireguard secret keys. • https://bugs.launchpad.net/netplan/+bug/1987842 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •