| CVE-2019-7307 |
|
Medium |
Aug 29, 2019 |
Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulner
more...
Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulnerability when reading the users ~/.apport-ignore.xml file, which allows a local attacker to replace this file with a symlink to any other file on the system and so cause Apport to include the contents of this other file in the resulting crash report. The crash report could then be read by that user either by causing it to be uploaded and reported to Launchpad, or by leveraging some other vulnerability to read the resulting crash report, and so allow the user to read arbitrary files on the system.
less...
|
2.20.9, 2.20.1, 2.14.1
|
| CVE-2018-6552 |
|
High |
May 31, 2018 |
Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could l
more...
Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers. The is_same_ns() function returns True when /proc// does not exist in order to indicate that the crash should be handled in the global namespace rather than inside of a container. However, the portion of the data/apport code that decides whether or not to forward a crash to a container does not always replace sys.argv[1] with the value stored in the host_pid variable when /proc// does not exist which results in the container pid being used in the global namespace. This flaw affects versions 2.20.8-0ubuntu4 through 2.20.9-0ubuntu7, 2.20.7-0ubuntu3.7, 2.20.7-0ubuntu3.8, 2.20.1-0ubuntu2.15 through 2.20.1-0ubuntu2.17, and 2.14.1-0ubuntu3.28.
less...
|
2.20.9, 2.20.7, 2.20.1, 2.14.1
|
| BDSA-2020-2996 |
|
Low |
Oct 28, 2020 |
Apport is vulnerable to arbitrary file read. An attacker could exploit this to leak files owned by the root group.
Apport is vulnerable to arbitrary file read. An attacker could exploit this to leak files owned by the root group.
less...
|
|
| BDSA-2020-2962 |
|
Low |
Oct 26, 2020 |
Apport is vulnerable to a Time-of-check Time-of-use (TOCTOU) race condition. An attacker could use this to escalate their privileges to root.
Apport is vulnerable to a Time-of-check Time-of-use (TOCTOU) race condition. An attacker could use this to escalate their privileges to root.
less...
|
|
