USN-2569-2 -- apport vulnerabilityID: oval:org.secpod.oval:def:702512 | Date: (C)2015-04-20 (M)2022-10-10 |
Class: PATCH | Family: unix |
apport: automatically generate crash reports for debugging Details: USN-2569-1 fixed a vulnerability in Apport. Tavis Ormandy discovered that the fixed packages were still vulnerable to a privilege escalation attack. This update completely disables crash report handling for containers until a more complete solution is available. Original advisory Apport could be tricked into running programs as an administrator.
Platform: |
Ubuntu 14.04 |
Ubuntu 14.10 |