USN-1668-1: Apport update
17 December 2012
A hardening measure was added to apport.
- apport - automatically generate crash reports for debugging
Dan Rosenberg discovered that an application running under an AppArmor
profile that allowed unconfined execution of apport-bug could escape
confinement by calling apport-bug with a crafted environment. While not a
vulnerability in apport itself, this update mitigates the issue by
sanitizing certain variables in the apport-bug shell script.