Users can consume unlimited disk space in /var/crash
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HCanonical Apport
APPCanonical< 2.21.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Referencje
Powiązane podatności
CVE-2021-3899HIGH7.8ten sam produkt
There is a race condition in the 'replaced executable' detection that, with the correct local configuration, a...
CVE-2022-1242HIGH7.8ten sam produkt
Apport can be tricked into connecting to arbitrary sockets as the root user
CVE-2023-1326HIGH7.7ten sam produkt
A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. I...
CVE-2021-25683HIGH8.8ten sam produkt
It was discovered that the get_starttime() function in data/apport did not properly parse the /proc/pid/stat f...
CVE-2021-25682HIGH8.8ten sam produkt
It was discovered that the get_pid_info() function in data/apport did not properly parse the /proc/pid/status ...