CVE-2021-3710
Published: 14 September 2021
An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to 2.20.9-0ubuntu7.26; 2.20.11 versions prior to 2.20.11-0ubuntu27.20; 2.20.11 versions prior to 2.20.11-0ubuntu65.3;
Priority
CVSS 3 base score: 5.5
Status
Package | Release | Status |
---|---|---|
apport Launchpad, Ubuntu, Debian |
bionic |
Released
(2.20.9-0ubuntu7.26)
|
focal |
Released
(2.20.11-0ubuntu27.20)
|
|
hirsute |
Released
(2.20.11-0ubuntu65.3)
|
|
impish |
Released
(2.20.11-0ubuntu69)
|
|
jammy |
Released
(2.20.11-0ubuntu69)
|
|
trusty |
Released
(2.14.1-0ubuntu3.29+esm8)
|
|
upstream |
Needs triage
|
|
xenial |
Released
(2.20.1-0ubuntu2.30+esm2)
|