CVE-2019-7307

HIGH

Apport <2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu...

Title source: llm

Description

Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulnerability when reading the users ~/.apport-ignore.xml file, which allows a local attacker to replace this file with a symlink to any other file on the system and so cause Apport to include the contents of this other file in the resulting crash report. The crash report could then be read by that user either by causing it to be uploaded and reported to Launchpad, or by leveraging some other vulnerability to read the resulting crash report, and so allow the user to read arbitrary files on the system.

References (3)

Core 3

Core References

Exploit, Issue Tracking, Vendor Advisory

https://bugs.launchpad.net/ubuntu/%2Bsource/apport/%2Bbug/1830858

Vendor Advisory

https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-7307.html

Exploit, Third Party Advisory

http://packetstormsecurity.com/files/172858/Ubuntu-Apport-Whoopsie-DoS-Integer-Overflow.html

Scores

CVSS v3 7.0

EPSS 0.0031

EPSS Percentile 22.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-367

Status published

Products (4)

apport_project/apport 2.14.1

apport_project/apport 2.20.1

apport_project/apport 2.20.9

apport_project/apport 2.20.10

Published Aug 29, 2019

Tracked Since Feb 18, 2026