CVE-2020-8833

CWE-3678 documents5 sources
Severity
4.7MEDIUM
EPSS
0.0%
top 89.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Canonical ApportCanonical Ubuntu Linux
Timeline
PublishedApr 22
Latest updateMay 24

Description

Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs.protected_symlinks is disabled, this can be exploited between the os.open and os.chown calls when the Apport cron script clears out crash files of size 0. A symlink with the same name as the deleted file can then be created upon which chown will be called, changing the file owner to root. Fixed in versions 2.20.1-0ubuntu2.23, 2.20.9-0ubun

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 1.1 | Impact: 4.0

Affected Packages2 packages

CVEListV5canonical/apport2.20.12.20.1-0ubuntu2.23+2
Ubuntuapport< 2.20.1-0ubuntu2.23+3

Also affects: Ubuntu Linux 14.04, 16.04, 18.04, 19.10

🔴Vulnerability Details

5
GHSA
GHSA-w9g5-3qgc-xmgx: Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportuni2022-05-24
OSV
apport vulnerabilities2020-06-15
CVEList
Apport race condition in crash report permissions2020-04-22
OSV
apport vulnerabilities2020-04-02
OSV
CVE-2020-8833: Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportuni2020-04-02

📋Vendor Advisories

2
Ubuntu
Apport vulnerabilities2020-06-15
Ubuntu
Apport vulnerabilities2020-04-02
CVE-2020-8833 (MEDIUM CVSS 4.7) | Time-of-check Time-of-use Race Cond | cvebase.io