Apport Security Vulnerabilities and Issues — Apport CVE List

Lucene search

CanonicalApport

11 matches found

CVE•added 2023/04/13 11:15 p.m.•433 views

CVE-2023-1326

A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privi...

7.8CVSS7.6AI score0.04606EPSS

CVE•added 2021/06/12 4:15 a.m.•140 views

CVE-2021-32557

It was discovered that the process_report() function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks.

7.1CVSS5.9AI score0.00058EPSS

CVE•added 2021/06/12 4:15 a.m.•135 views

CVE-2021-32556

It was discovered that the get_modified_conffiles() function in backends/packaging-apt-dpkg.py allowed injecting modified package names in a manner that would confuse the dpkg(1) call.

3.8CVSS4.7AI score0.00093EPSS

CVE•added 2021/06/11 3:15 a.m.•89 views

CVE-2021-25684

It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO.

8.8CVSS7.5AI score0.00057EPSS

CVE•added 2021/06/11 3:15 a.m.•85 views

CVE-2021-25682

It was discovered that the get_pid_info() function in data/apport did not properly parse the /proc/pid/status file from the kernel.

8.8CVSS7.7AI score0.00064EPSS

CVE•added 2021/06/11 3:15 a.m.•79 views

CVE-2021-25683

It was discovered that the get_starttime() function in data/apport did not properly parse the /proc/pid/stat file from the kernel.

8.8CVSS7.6AI score0.00047EPSS

CVE•added 2019/04/22 4:29 p.m.•69 views

CVE-2015-1341

Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path.

7.8CVSS7.5AI score0.00047EPSS

CVE•added 2021/10/01 3:15 a.m.•61 views

CVE-2021-3709

Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior ...

6.5CVSS5.2AI score0.00065EPSS

CVE•added 2020/08/06 11:15 p.m.•55 views

CVE-2020-15701

An unhandled exception in check_ignored() in apport/report.py can be exploited by a local attacker to cause a denial of service. If the mtime attribute is a string value in apport-ignore.xml, it will trigger an unhandled exception, resulting in a crash. Fixed in 2.20.1-0ubuntu2.24, 2.20.9-0ubuntu7....

5.5CVSS5.4AI score0.0013EPSS

CVE•added 2021/10/01 3:15 a.m.•54 views

CVE-2021-3710

An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to 2.20.9-0ubuntu7.26; 2.20.11 versions prior...

6.5CVSS5.2AI score0.00061EPSS

CVE•added 2020/08/06 11:15 p.m.•52 views

CVE-2020-15702

TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attacker may exit the crashed process and exploit PID recycling to spawn a root process with the same PID as the crashed process, which can then be used to escalate privileges...

7CVSS7AI score0.00089EPSS