CVE-2019-11481

Published: Feb 8, 2020Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the file with a symbolic link, a user could get apport to read any file on the system as root, with unknown consequences.

Affected (6)

Products: Canonical: Ubuntu Linux · Apport Project: Apport

1 product

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 19.04
Canonical Ubuntu Linux	Version 19.10

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Apport Project Apport	All versions

Related CWEs

Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References (6)

http://packetstormsecurity.com/files/172858/Ubuntu-Apport-Whoopsie-DoS-Integer-Overflow.html

Source: security@ubuntu.com

https://usn.ubuntu.com/usn/usn-4171-1

Source: security@ubuntu.com

Third Party Advisory

https://usn.ubuntu.com/usn/usn-4171-2

Source: security@ubuntu.com

Third Party Advisory

http://packetstormsecurity.com/files/172858/Ubuntu-Apport-Whoopsie-DoS-Integer-Overflow.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://usn.ubuntu.com/usn/usn-4171-1

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/usn/usn-4171-2

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.