UbuntuUpdates.org

Package "apport"

Name: apport

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • KDE frontend for the apport crash report system
  • tools for automatically reporting Apport crash reports
  • valgrind wrapper that first downloads debug symbols
  • debhelper extension for the apport crash report system

Latest version: 2.20.7-0ubuntu3.7
Release: artful (17.10)
Level: updates
Repository: universe

Links

Save this URL for the latest version of "apport": https://www.ubuntuupdates.org/apport



Other versions of "apport" in Artful

Repository Area Version
base main 2.20.7-0ubuntu3
base universe 2.20.7-0ubuntu3
security main 2.20.7-0ubuntu3.7
security universe 2.20.7-0ubuntu3.7
updates main 2.20.7-0ubuntu3.7

Packages in group

Deleted packages are displayed in grey.

apport-kde apport-noui apport-valgrind dh-apport

Changelog

Version: 2.20.7-0ubuntu3.7 2018-01-03 22:06:32 UTC

  apport (2.20.7-0ubuntu3.7) artful-security; urgency=medium

  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

 -- Brian Murray <email address hidden> Wed, 13 Dec 2017 10:49:58 -0800

Source diff to previous version
1733366 apport crashed with FileNotFoundError in is_container_pid(): [Errno 2] No such file or directory: '/proc/11102/ns/pid'

Version: 2.20.7-0ubuntu3.6 2017-12-07 20:07:03 UTC

  apport (2.20.7-0ubuntu3.6) artful; urgency=medium

  * bin/apport-cli: read until <enter> instead of a single character when # of
    apport options is non-unique with a single character. Thanks to Chad Smith
    for the patch. (LP: #1722564)

 -- Brian Murray <email address hidden> Mon, 27 Nov 2017 15:22:40 -0800

Source diff to previous version
1722564 apport question will not accept multi-character responses

Version: 2.20.7-0ubuntu3.5 2017-11-21 01:06:57 UTC

  apport (2.20.7-0ubuntu3.5) artful-security; urgency=medium

  [ Stéphane Graber ]
  * REGRESSION UPDATE: Fix regression in previous upload by re-enabling
    container support. (LP: #1732518)
  * Add code preventing a user from confusing apport by using
    a manually crafted filesystem inside a combination of a user and mount
    namespace.
  * Add a check in apport receiver for the number of arguments so that
    should another argument be added later, the receiver will simply ignore
    the crash until it itself gets updated.

 -- Tyler Hicks <email address hidden> Fri, 17 Nov 2017 15:58:36 +0000

Source diff to previous version
1732518 Please re-enable container support in apport

Version: 2.20.7-0ubuntu3.4 2017-11-15 23:06:58 UTC

  apport (2.20.7-0ubuntu3.4) artful-security; urgency=medium

  * SECURITY UPDATE: Denial of service via resource exhaustion and
    privilege escalation when handling crashes of tainted processes
    (LP: #1726372)
    - When /proc/sys/fs/suid_dumpable is set to 2, do not assume that
      the user and group owning the /proc/<PID>/stat file is the same
      user and group that started the process. Rather check the dump
      mode of the crashed process and do not write a core file if its
      value is 2. Thanks to Sander Bos for discovering this issue!
    - CVE-2017-14177
  * SECURITY UPDATE: Denial of service via resource exhaustion,
    privilege escalation, and possible container escape when handling
    crashes of processes inside PID namespaces (LP: #1726372)
    - Change the method for determining if a crash is from a container
      so that there are no false positives from software using PID
      namespaces. Additionally, disable container crash forwarding by
      ignoring crashes that occur in a PID namespace. This functionality
      may be re-enabled in a future update. Thanks to Sander Bos for
      discovering this issue!
    - CVE-2017-14180

 -- Brian Murray <email address hidden> Tue, 14 Nov 2017 08:37:05 -0800

Source diff to previous version
1726372 Multiple security issues in Apport
CVE-2017-14177 RESERVED
CVE-2017-14180 RESERVED

Version: 2.20.7-0ubuntu3.1 2017-10-25 18:06:40 UTC

  apport (2.20.7-0ubuntu3.1) artful; urgency=medium

  * etc/apport/crashdb.conf: Disable Launchpad crash reports for 17.10
    release. (LP: #1726647)

 -- Brian Murray <email address hidden> Tue, 24 Oct 2017 08:22:21 -0700

1726647 crash reports still sent to LP on artful



About   -   Send Feedback to @ubuntu_updates