CVE-2019-11483

Published: Feb 8, 2020Modified: Nov 3, 2025

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: NVD

Description

Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local attacker to generate a crash report for a privileged process that is readable by an unprivileged user.

Affected (6)

Products: Apport Project: Apport · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apport Project Apport	All versions

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 19.04
Canonical Ubuntu Linux	Version 19.10

References (5)

https://usn.ubuntu.com/usn/usn-4171-1

Source: security@ubuntu.com

Third Party Advisory

https://usn.ubuntu.com/usn/usn-4171-2

Source: security@ubuntu.com

Third Party Advisory

http://seclists.org/fulldisclosure/2025/Jun/9

Source: af854a3a-2127-422b-91ae-364da2661108

https://usn.ubuntu.com/usn/usn-4171-1

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/usn/usn-4171-2

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.