CVE-2017-10708
CVE-2017-10708 : The issue affects Apport up to version 2.20.x. In apport/report.py, the code sets the ExecutablePath field and then uses that path to run package-specific hooks without validating against path traversal, allowing a remote attacker to execute arbitrary code via a crafted .crash fi...