Canonical Apport
27 CVEs affecting Canonical Apport. Latest disclosed: 2025-12-10. Critical: 0, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-25684 | High | 8.8 | 2021-06-11 | It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO. |
CVE-2021-25683 | High | 8.8 | 2021-06-11 | It was discovered that the get_starttime() function in data/apport did not properly parse the /proc/pid/stat file from the kernel. |
CVE-2021-25682 | High | 8.8 | 2021-06-11 | It was discovered that the get_pid_info() function in data/apport did not properly parse the /proc/pid/status file from the kernel. |
CVE-2021-32555 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg-hwe-18.04 package a… |
CVE-2021-32554 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the xorg package apport hook… |
CVE-2021-32553 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-17 package appor… |
CVE-2021-32552 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package appor… |
CVE-2021-32551 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-15 package appor… |
CVE-2021-32550 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-14 package appor… |
CVE-2021-32549 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-13 package appor… |
CVE-2021-32548 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-8 package apport… |
CVE-2021-32547 | High | 7.3 | 2021-06-12 | It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-lts package appo… |
CVE-2020-15702 | High | 7.0 | 2020-08-06 | TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attacker may exit the crashed proce… |
CVE-2019-11483 | High | 7.0 | 2020-02-08 | Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local attacker to generate a crash report for a privil… |
CVE-2021-3710 | Medium | 6.5 | 2021-10-01 | An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). This issue affects: apport 2.14.1 versions prior to 2… |
CVE-2021-3709 | Medium | 6.5 | 2021-10-01 | Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issu… |
CVE-2020-8831 | Medium | 6.5 | 2020-04-22 | Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist (this i… |
CVE-2020-8833 | Medium | 5.6 | 2020-04-22 | Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs… |
CVE-2020-15701 | Medium | 5.5 | 2020-08-06 | An unhandled exception in check_ignored() in apport/report.py can be exploited by a local attacker to cause a denial of service. If the mtime attribute is a st… |
CVE-2021-32557 | Medium | 5.2 | 2021-06-12 | It was discovered that the process_report() function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks. |