Package "apport-noui"

Name: apport-noui


tools for automatically reporting Apport crash reports

Latest version: 2.20.11-0ubuntu50.5
Release: groovy (20.10)
Level: security
Repository: universe
Head package: apport
Homepage: https://wiki.ubuntu.com/Apport


Download "apport-noui"

Other versions of "apport-noui" in Groovy

Repository Area Version
base universe 2.20.11-0ubuntu50
updates universe 2.20.11-0ubuntu50.5


Version: 2.20.11-0ubuntu50.5 2021-02-02 19:06:57 UTC

  apport (2.20.11-0ubuntu50.5) groovy-security; urgency=medium

  * SECURITY UPDATE: multiple security issues (LP: #1912326)
    - CVE-2021-25682: error parsing /proc/pid/status
    - CVE-2021-25683: error parsing /proc/pid/stat
    - CVE-2021-25684: stuck reading fifo
    - data/apport: make sure existing report is a regular file.
    - apport/fileutils.py: move some logic here to skip over manipulated
      process names and filenames.
    - test/test_fileutils.py: added some parsing tests.

 -- Marc Deslauriers <email address hidden> Tue, 26 Jan 2021 07:21:46 -0500

Source diff to previous version
CVE-2021-25682 RESERVED
CVE-2021-25683 RESERVED
CVE-2021-25684 RESERVED

Version: 2.20.11-0ubuntu50.1 2020-11-12 16:07:45 UTC

  apport (2.20.11-0ubuntu50.1) groovy-security; urgency=medium

  * Various security hardening fixes (LP: #1903332)
    - apport/fileutils.py: drop privileges in the correct order, limit
      settings file size.
    - apport/apport/report.py: properly drop privileges, limit ignore file
    - data/apport: drop supplemental groups.

 -- Marc Deslauriers <email address hidden> Tue, 10 Nov 2020 15:03:57 -0500

1903332 Apport get_config incorrectly drops privileges

About   -   Send Feedback to @ubuntu_updates