5 matches found
SUSE CVE-2021-32555
It was discovered that readfile in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg-hwe-18.04 package apport hooks, it could expose private data to other local users...
CVE-2021-32555
CVE-2021-32555 affects the Ubuntu Apport component. The read_file() function in apport/hookutils.py could follow symbolic links or open FIFOs when invoked by xorg-hwe-18.04 package apport hooks, potentially exposing private data to other local users. CVSS/metrics in public records indicate local ...
CVE-2021-32555 apport read_file() function could follow maliciously constructed symbolic links
It was discovered that readfile in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg-hwe-18.04 package apport hooks, it could expose private data to other local users...
Arbitrary File Read
apport is vulnerable to arbitrary file read. The vulnerability exists in the function attach3dinfo in xorg-hwe-18.04...
CVE-2021-32555
It was discovered that readfile in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg-hwe-18.04 package apport hooks, it could expose private data to other local users...