threat
engine
.sh
Back
·
··:··
Home
/
Product
/
apport project apport
Product
apport project apport
42 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-5467
>= 2.20.1-0ubuntu1 and < 2.20.1-0ubuntu2.30
It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool may create crash files with incor
3.3
LOW
CVE-2025-5054
<= 2.32.0
Race condition in Canonical apport up to and including 2.32.0 allows a local attacker to leak sensitive information via PID-reuse
4.7
MEDIUM
CVE-2020-11936
all versions
gdbus setgid privilege escalation
3.1
LOW
CVE-2022-28653
< 2.21.0
Users can consume unlimited disk space in /var/crash
7.5
HIGH
CVE-2022-28658
< 2.21.0
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing
5.5
MEDIUM
CVE-2022-28657
< 2.21.0
Apport does not disable python crash handler before entering chroot
7.8
HIGH
CVE-2022-28656
< 2.21.0
is_closing_session() allows users to consume RAM in the Apport process
5.5
MEDIUM
CVE-2022-28655
< 2.21.0
is_closing_session() allows users to create arbitrary tcp dbus connections
7.1
HIGH
CVE-2022-28654
< 2.21.0
is_closing_session() allows users to fill up apport.log
5.5
MEDIUM
CVE-2022-28652
< 2.21.0
~/.config/apport/settings parsing is vulnerable to "billion laughs" attack
5.5
MEDIUM
CVE-2022-1242
< 2.21.0
Apport can be tricked into connecting to arbitrary sockets as the root user
7.8
HIGH
CVE-2021-3899
< 2.21.0
There is a race condition in the 'replaced executable' detection that, with the correct local configuration, allow an attacker to
7.8
HIGH
CVE-2023-1326
<= 2.26.0
A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specia
7.7
HIGH
CVE-2021-3710
all versions
An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). This issue affects: appor
6.5
MEDIUM
CVE-2021-3709
all versions
Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a cons
6.5
MEDIUM
CVE-2021-32557
>= 2.14.1-0ubuntu3 and < 2.14.1-0ubuntu3.29\+esm7
It was discovered that the process_report() function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks.
5.2
MEDIUM
CVE-2021-32556
>= 2.14.1-0ubuntu3 and < 2.14.1-0ubuntu3.29\+esm7
It was discovered that the get_modified_conffiles() function in backends/packaging-apt-dpkg.py allowed injecting modified package
3.8
LOW
CVE-2021-25684
>= 2.20.1-0ubuntu1 and < 2.20.1-0ubuntu2.30
It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO.
8.8
HIGH
CVE-2021-25683
>= 2.20.1-0ubuntu1 and < 2.20.1-0ubuntu2.30
It was discovered that the get_starttime() function in data/apport did not properly parse the /proc/pid/stat file from the kernel.
8.8
HIGH
CVE-2021-25682
>= 2.20.1-0ubuntu1 and < 2.20.1-0ubuntu2.30
It was discovered that the get_pid_info() function in data/apport did not properly parse the /proc/pid/status file from the kernel
8.8
HIGH
CVE-2020-15702
all versions
TOCTOU Race Condition vulnerability in apport allows a local attacker to escalate privileges and execute arbitrary code. An attack
7.0
HIGH
CVE-2020-15701
all versions
An unhandled exception in check_ignored() in apport/report.py can be exploited by a local attacker to cause a denial of service. I
5.5
MEDIUM
CVE-2019-15790
all versions
Apport reads and writes information on a crashed process to /proc/pid with elevated privileges. Apport then determines which user
2.8
LOW
CVE-2020-8833
all versions
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege
5.6
MEDIUM
CVE-2020-8831
all versions
Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ dir
6.5
MEDIUM
CVE-2019-11485
all versions
Sander Bos discovered Apport's lock file was in a world-writable directory which allowed all users to prevent crash handling.
3.3
LOW
CVE-2019-11483
all versions
Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local attacker to generat
7.0
HIGH
CVE-2019-11482
all versions
Sander Bos discovered a time of check to time of use (TOCTTOU) vulnerability in apport that allowed a user to cause core files to
4.2
MEDIUM
CVE-2019-11481
all versions
Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the fi
3.8
LOW
CVE-2019-7307
all versions
Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 conta
7.0
HIGH
CVE-2015-1341
< 2.19.2
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first a
7.4
HIGH
CVE-2018-6552
all versions
Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root whic
7.8
HIGH
CVE-2017-14180
>= 2.13 and <= 2.20.7
Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certai
7.8
HIGH
CVE-2017-14179
< 2.13
Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files
7.8
HIGH
CVE-2017-14177
<= 2.20.7
Apport through 2.20.7 does not properly handle core dumps from setuid binaries allowing local users to create certain files as roo
7.8
HIGH
CVE-2017-10708
<= 2.20.6
An issue was discovered in Apport through 2.20.x. In apport/report.py, Apport sets the ExecutablePath field and it then uses the p
7.8
HIGH
CVE-2016-9951
<= 2.20.3
An issue was discovered in Apport before 2.20.4. A malicious Apport crash file can contain a restart command in
RespawnCommand
o
6.5
MEDIUM
CVE-2016-9950
<= 2.20.3
An issue was discovered in Apport before 2.20.4. There is a path traversal issue in the Apport crash file "Package" and "SourcePac
7.8
HIGH
CVE-2016-9949
<= 2.20.3
An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field a
7.8
HIGH
CVE-2015-1338
<= 2.18.1
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privile
CVE-2015-1318
all versions
The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to gain privileges via a crafted usr/sh
CVE-2009-1295
<= 0.1.0.8.1
Apport before 0.108.4 on Ubuntu 8.04 LTS, before 0.119.2 on Ubuntu 8.10, and before 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properl
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin