Vulnerability in Canonical Apport
CVE-2025-5467
It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool may create crash files with incorrect group ownership, possibly exposing crash information beyond expected or intended groups.
EPSS: 0.000 (5.3th percentile) — read the EPSS interpretation.
Affected products
- Canonical Apport — versions 2.20.11-0ubuntu82, 2.32.0, 2.20.9