Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 21.04 LTS - 4965-1 Moderate: Apport Local Attack Risks

ubuntu
Calendar Grey May 25, 2021
Dist Ubuntu Esm H88
Multiple vulnerabilities addressed in Ubuntu Apport. Upgrade promptly to protect your device against potential local attacker threats.
Several security issues were fixed in Apport.

Summary

Several security issues were fixed in Apport.

Software Description:

- apport: automatically generate crash reports for debugging

Details:

Maik Münch discovered that Apport incorrectly handled certain information

gathering operations. A local attacker could use these issues to read and

write arbitrary files as an administrator, and possibly escalate

privileges.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 21.04:
  apport                          2.20.11-0ubuntu65.1
  python3-apport                  2.20.11-0ubuntu65.1

Ubuntu 20.10:
  apport                          2.20.11-0ubuntu50.7
  python3-apport                  2.20.11-0ubuntu50.7

Ubuntu 20.04 LTS:
  apport                          2.20.11-0ubuntu27.18
  python3-apport                  2.20.11-0ubuntu27.18

Ubuntu 18.04 LTS:
  apport                          2.20.9-0ubuntu7.24
  python-apport                   2.20.9-0ubuntu7.24
  python3-apport                  2.20.9-0ubuntu7.24

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4965-1

CVE-2021-32547, CVE-2021-32548, CVE-2021-32549, CVE-2021-32550,

CVE-2021-32551, CVE-2021-32552, CVE-2021-32553, CVE-2021-32554,

CVE-2021-32555, CVE-2021-32556, CVE-2021-32557

Severity
important
Lowest
Low
Medium
High
Critical

May 25, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here