Apport vulnerability

2015-09-2400:00:00

ubuntu.com

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.1%

JSON

Releases

Ubuntu 15.04
Ubuntu 14.04 ESM
Ubuntu 12.04

Packages

apport - automatically generate crash reports for debugging

Details

Halfdog discovered that Apport incorrectly handled kernel crash dump files.
A local attacker could use this issue to cause a denial of service, or
possibly elevate privileges. The default symlink protections for affected
releases should reduce the vulnerability to a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu15.04noarchapport< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchapport-gtk< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchapport-kde< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchapport-noui< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchapport-retrace< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchapport-valgrind< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchdh-apport< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchpython-apport< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchpython-problem-report< 2.17.2-0ubuntu1.5UNKNOWN
Ubuntu15.04noarchpython3-apport< 2.17.2-0ubuntu1.5UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	15.04	noarch	apport	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	apport-gtk	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	apport-kde	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	apport-noui	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	apport-retrace	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	apport-valgrind	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	dh-apport	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	python-apport	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	python-problem-report	< 2.17.2-0ubuntu1.5	UNKNOWN
Ubuntu	15.04	noarch	python3-apport	< 2.17.2-0ubuntu1.5	UNKNOWN