Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 10 of 23 results

Status is adjusted based on your filters.

CVE-2023-1326

Medium priority
Fixed

A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager,...

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28658

Medium priority
Fixed

Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28657

Medium priority
Fixed

Apport does not disable python crash handler before entering chroot

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28656

Low priority
Fixed

is_closing_session() allows users to consume RAM in the Apport process

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28655

Medium priority
Fixed

is_closing_session() allows users to create arbitrary tcp dbus connections

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28654

Medium priority
Fixed

is_closing_session() allows users to fill up apport.log

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-28653

Low priority
Ignored

Users can consume unlimited disk space in /var/crash

1 affected packages

apport

Package 22.04 LTS
apport Ignored
Show less packages

CVE-2022-28652

Medium priority
Fixed

~/.config/apport/settings parsing is vulnerable to "billion laughs" attack

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2022-1242

Medium priority
Fixed

Apport can be tricked into connecting to arbitrary sockets as the root user

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages

CVE-2021-3899

Medium priority
Fixed

There is a race condition in the 'replaced executable' detection that, with the correct local configuration, allow an attacker to execute arbitrary code as root.

1 affected packages

apport

Package 22.04 LTS
apport Fixed
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. Next page
Export to JSON