CVE-2021-32556 apport get_modified_conffiles() function command injection

2021-06-1203:40:42

CWE-78

canonical

www.cve.org

cve-2021-32556

apport

get_modified_conffiles

command injection

backends

packaging-apt-dpkg.py

dpkg(1)

CVSS3

3.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

AI Score

5.7

Confidence

High

EPSS

Percentile

13.1%

JSON

It was discovered that the get_modified_conffiles() function in backends/packaging-apt-dpkg.py allowed injecting modified package names in a manner that would confuse the dpkg(1) call.

CNA Affected

[
  {
    "product": "apport",
    "vendor": "Canonical",
    "versions": [
      {
        "lessThan": "2.20.1-0ubuntu2.30+esm1",
        "status": "affected",
        "version": "2.20.1",
        "versionType": "custom"
      },
      {
        "lessThan": "2.20.9-0ubuntu7.24",
        "status": "affected",
        "version": "2.20.9",
        "versionType": "custom"
      },
      {
        "lessThan": "2.20.11-0ubuntu27.18",
        "status": "affected",
        "version": "2.20.11-0ubuntu27",
        "versionType": "custom"
      },
      {
        "lessThan": "2.20.11-0ubuntu50.7",
        "status": "affected",
        "version": "2.20.11-0ubuntu50",
        "versionType": "custom"
      },
      {
        "lessThan": "2.20.11-0ubuntu65.1",
        "status": "affected",
        "version": "2.20.11-0ubuntu65",
        "versionType": "custom"
      },
      {
        "lessThan": "2.14.1-0ubuntu3.29+esm7",
        "status": "affected",
        "version": "2.14.1-0ubuntu3",
        "versionType": "custom"
      }
    ]
  }
]