Apport Project Apport vulnerabilities
50 known vulnerabilities affecting apport_project/apport.
Total CVEs
50
CISA KEV
0
Public exploits
6
Exploited in wild
0
Severity breakdown
HIGH24MEDIUM21LOW5
Vulnerabilities
Page 1 of 3
CVE-2016-9949P3HIGHCVSS 7.8PoC≤ 2.20.32016-12-17
CVE-2016-9949 [HIGH] CWE-94 CVE-2016-9949: An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and
An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote attackers to execute arbitrary Python code.
nvdosv
CVE-2016-9950P3HIGHCVSS 7.8PoC≤ 2.20.32016-12-17
CVE-2016-9950 [HIGH] CWE-22 CVE-2016-9950: An issue was discovered in Apport before 2.20.4. There is a path traversal issue in the Apport crash
An issue was discovered in Apport before 2.20.4. There is a path traversal issue in the Apport crash file "Package" and "SourcePackage" fields. These fields are used to build a path to the package specific hook files in the /usr/share/apport/package-hooks/ directory. An attacker can exploit this path traversal to execute arbitrary Python files from the l
nvdosv
CVE-2016-9951P3MEDIUMCVSS 6.5PoC≤ 2.20.32016-12-17
CVE-2016-9951 [MEDIUM] CWE-284 CVE-2016-9951: An issue was discovered in Apport before 2.20.4. A malicious Apport crash file can contain a restart
An issue was discovered in Apport before 2.20.4. A malicious Apport crash file can contain a restart command in `RespawnCommand` or `ProcCmdline` fields. This command will be executed if a user clicks the Relaunch button on the Apport prompt from the malicious crash file. The fix is to only show the Relaunch button on Apport crash files generated by l
nvdosv
CVE-2015-1325P3HIGHCVSS 7.0PoC≥ 0, < 2.14.1-0ubuntu3.112015-05-21
CVE-2015-1325 [HIGH] CVE-2015-1325: Race condition in Apport before 2
Race condition in Apport before 2.17.2-0ubuntu1.1 as packaged in Ubuntu 15.04, before 2.14.70ubuntu8.5 as packaged in Ubuntu 14.10, before 2.14.1-0ubuntu3.11 as packaged in Ubuntu 14.04 LTS, and before 2.0.1-0ubuntu17.9 as packaged in Ubuntu 12.04 LTS allow local users to write to arbitrary files and gain root privileges.
osv
CVE-2015-1318P3HIGHCVSS 7.2PoCv2.13v2.13.1+16 more2015-04-17
CVE-2015-1318 [HIGH] CWE-264 CVE-2015-1318: The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to gain p
The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to gain privileges via a crafted usr/share/apport/apport file in a namespace (container).
nvdosv
CVE-2015-1338P4HIGHCVSS 7.2PoC≤ 2.18.12015-10-01
CVE-2015-1338 [HIGH] CWE-59 CVE-2015-1338: kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consump
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.
nvdosv
CVE-2022-1242P3HIGHCVSS 7.8≥ 0, < 2.20.1-0ubuntu2.30+esm4≥ 0, < 2.20.9-0ubuntu7.28+2 more2022-05-17
CVE-2022-1242 [HIGH] CVE-2022-1242: Apport can be tricked into connecting to arbitrary sockets as the root user
Apport can be tricked into connecting to arbitrary sockets as the root user
osv
CVE-2021-3899P3HIGHCVSS 7.8≥ 0, < 2.20.1-0ubuntu2.30+esm42024-07-11
CVE-2021-3899 [HIGH] apport vulnerabilities
apport vulnerabilities
Muqing Liu and neoni discovered that Apport incorrectly handled detecting
if an executable was replaced after a crash. A local attacker could
possibly use this issue to execute arbitrary code as the root user.
(CVE-2021-3899)
Gerrit Venema discovered that Apport incorrectly handled connections to
Apport sockets inside containers. A local attacker could possibly use this
issue to connect to arbitrary sockets as the root user. (C
osv
CVE-2023-1326P3HIGHCVSS 7.8≥ 0, < 2.20.9-0ubuntu7.29≥ 0, < 2.20.11-0ubuntu27.26+1 more2023-04-13
CVE-2023-1326 [HIGH] CVE-2023-1326: A privilege escalation attack was found in apport-cli 2
A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privilege. It is extremely unlikely that a system administrator would configure sudo to allow unprivileged users t
osv
CVE-2015-1324P3HIGHCVSS 7.8≥ 0, < 2.14.1-0ubuntu3.112015-05-21
CVE-2015-1324 [HIGH] apport vulnerabilities
apport vulnerabilities
Sander Bos discovered that Apport incorrectly handled permissions when
the system was configured to generate core dumps for setuid binaries. A
local attacker could use this issue to gain elevated privileges.
(CVE-2015-1324)
Philip Pettersson discovered that Apport contained race conditions
resulting core dumps to be generated with incorrect permissions in
arbitrary locations. A local attacker could use this issue to gain elevat
osv
CVE-2017-10708P3HIGHCVSS 7.8≤ 2.20.62017-07-18
CVE-2017-10708 [HIGH] CWE-22 CVE-2017-10708: An issue was discovered in Apport through 2.20.x. In apport/report.py, Apport sets the ExecutablePat
An issue was discovered in Apport through 2.20.x. In apport/report.py, Apport sets the ExecutablePath field and it then uses the path to run package specific hooks without protecting against path traversal. This allows remote attackers to execute arbitrary code via a crafted .crash file.
nvdosv
CVE-2019-11481P3HIGHCVSS 7.8≥ 0, < 2.14.1-0ubuntu3.29+esm22019-11-04
CVE-2019-11481 [HIGH] apport vulnerabilities
apport vulnerabilities
USN-4171-1 fixed several vulnerabilities in apport. This update provides
the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
Kevin Backhouse discovered Apport would read its user-controlled settings
file as the root user. This could be used by a local attacker to possibly
crash Apport or have other unspecified consequences. (CVE-2019-11481)
Sander Bos discovered a race-condition in Apport during core du
osv
CVE-2017-14180P3HIGHCVSS 7.8≥ 2.13, ≤ 2.20.72018-02-02
CVE-2017-14180 [HIGH] CVE-2017-14180: Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowin
Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability than CVE-2017-14179.
nvdosv
CVE-2018-6552P3HIGHCVSS 7.8v2.14.1v2.20.9+9 more2018-05-31
CVE-2018-6552 [HIGH] CVE-2018-6552: Apport does not properly handle crashes originating from a PID namespace allowing local users to cre
Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers. The is_same_ns() function returns True when /proc// does not exist in order to indicate th
nvdosv
CVE-2017-14179P3HIGHCVSS 7.8fixed in 2.132018-02-02
CVE-2017-14179 [HIGH] CWE-400 CVE-2017-14179: Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local
Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers.
nvdosv
CVE-2015-1341P3HIGHCVSS 7.8≥ 0, < 2.14.1-0ubuntu3.18≥ 0, < 2.19.2-0ubuntu12015-10-27
CVE-2015-1341 [HIGH] CVE-2015-1341: Any Python module in sys
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path.
osv
CVE-2017-14177P3HIGHCVSS 7.8≤ 2.20.72018-02-02
CVE-2017-14177 [HIGH] CVE-2017-14177: Apport through 2.20.7 does not properly handle core dumps from setuid binaries allowing local users
Apport through 2.20.7 does not properly handle core dumps from setuid binaries allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1324.
nvdosv
CVE-2022-28657P3HIGHCVSS 7.8fixed in 2.21.02024-06-04
CVE-2022-28657 [HIGH] CWE-400 CVE-2022-28657: Apport does not disable python crash handler before entering chroot
Apport does not disable python crash handler before entering chroot
nvdosv
CVE-2020-15702P3HIGHCVSS 7.0≥ 0, < 2.14.1-0ubuntu3.29+esm5≥ 0, < 2.20.1-0ubuntu2.24+2 more2020-08-04
CVE-2020-15702 [HIGH] CVE-2020-15702: TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code
TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attacker may exit the crashed process and exploit PID recycling to spawn a root process with the same PID as the crashed process, which can then be used to escalate privileges. Fixed in 2.20.1-0ubuntu2.24, 2.20.9 versi
osv
CVE-2021-25684P3HIGHCVSS 7.8≥ 0, < 2.14.1-0ubuntu3.29+esm6≥ 0, < 2.20.1-0ubuntu2.30+2 more2021-02-02
CVE-2021-25684 [HIGH] CVE-2021-25684: It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO
It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO.
osv
1 / 3Next →