Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local attacker to generate a crash report for a privileged process that is readable by an unprivileged user.
References
Link | Resource |
---|---|
https://usn.ubuntu.com/usn/usn-4171-1 | Third Party Advisory |
https://usn.ubuntu.com/usn/usn-4171-2 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2020-02-08 05:15
Updated : 2024-02-04 20:39
NVD link : CVE-2019-11483
Mitre link : CVE-2019-11483
CVE.ORG link : CVE-2019-11483
JSON object : View
Products Affected
apport_project
- apport
canonical
- ubuntu_linux
CWE