CVE-2015-1338
First published: Thu Oct 01 2015(Updated: )
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.
Credit: security@ubuntu.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apport Project Apport | <=2.18.1 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =15.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/133723/Ubuntu-Apport-kernel_crashdump-Symlink.html
- http://seclists.org/fulldisclosure/2015/Sep/101
- http://www.halfdog.net/Security/2015/ApportKernelCrashdumpFileAccessVulnerabilities/
- http://www.ubuntu.com/usn/USN-2744-1
- https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1492570
- https://launchpad.net/apport/trunk/2.19
- https://www.exploit-db.com/exploits/38353/
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/tags
- agent/type
- agent/softwarecombine
- agent/last-modified-date
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/apport project
- canonical/apport project apport
- version/apport project apport/2.18.1
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/15.04