Your submission was sent successfully! Close

CVE-2019-11476

Published: 09 July 2019

An integer overflow in whoopsie before versions 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie process.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
whoopsie
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 18.04 LTS (Bionic Beaver)
Released (0.2.62ubuntu0.1)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (0.2.52.5ubuntu0.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist