Apport could be made to leak sensitive information.
Software Description:
- apport: automatically generate crash reports for debugging
Details:
Qualys discovered that Apport incorrectly handled metadata when
processing application crashes. An attacker could possibly use this issue
to leak sensitive information.
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.04
apport 2.32.0-0ubuntu5.1
python3-apport 2.32.0-0ubuntu5.1
Ubuntu 24.10
apport 2.30.0-0ubuntu4.3
python3-apport 2.30.0-0ubuntu4.3
Ubuntu 24.04 LTS
apport 2.28.1-0ubuntu3.6
python3-apport 2.28.1-0ubuntu3.6
Ubuntu 22.04 LTS
apport 2.20.11-0ubuntu82.7
python3-apport 2.20.11-0ubuntu82.7
Ubuntu 20.04 LTS
apport 2.20.11-0ubuntu27.28
python3-apport 2.20.11-0ubuntu27.28
Ubuntu 18.04 LTS
apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
python-apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
python3-apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
python-apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
python3-apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-7545-1
CVE-2025-5054
Get the latest Linux and open source security news straight to your inbox.