Package "apport"
| Name: |
apport
|
Description: |
automatically generate crash reports for debugging
|
| Latest version: |
2.20.11-0ubuntu82.8 |
| Release: |
jammy (22.04) |
| Level: |
security |
| Repository: |
main |
| Homepage: |
https://wiki.ubuntu.com/Apport |
Links
Download "apport"
Other versions of "apport" in Jammy
Packages in group
Deleted packages are displayed in grey.
Changelog
|
apport (2.20.11-0ubuntu82.8) jammy-security; urgency=medium
* SECURITY REGRESSION: apport not generating core dumps inside containers
(LP: #2112272)
- data/apport: Check the exe mtime within the proc root mount.
-- Octavio Galland <email address hidden> Wed, 04 Jun 2025 15:56:45 -0300
|
| Source diff to previous version |
| 2112272 |
Apport refuses to generate core dumps inside containers |
|
|
apport (2.20.11-0ubuntu82.7) jammy-security; urgency=medium
* SECURITY UPDATE: Race condition when forwarding core files to containers
- data/apport: Do not change report group to report owners primary group.
- data/apport: Do not override options.pid.
- data/apport: Open /proc/<pid> as early as possible.
- data/fileutils.py: Respect proc_pid_fd in get_core_path.
- test/test_fileutils.py: Respect proc_pid_fd in get_core_path.
- data/apport: Use opened /proc/<pid> everywhere.
- data/apport: Do consistency check before forwarding crashes.
- data/apport: Require --dump-mode to be specified.
- data/apport: Determine report owner by dump_mode.
- test/test_signal_crashes.py: Determine report owner by dump_mode.
- data/apport: Do not forward crash for dump_mode == 2.
- data/apport: Support pidfd (%F) parameter from kernel.
- etc/init.d/apport: Support pidfd (%F) parameter from kernel.
- CVE-2025-5054
-- Octavio Galland <email address hidden> Thu, 22 May 2025 17:41:12 -0300
|
| Source diff to previous version |
|
apport (2.20.11-0ubuntu82.4) jammy-security; urgency=medium
* SECURITY UPDATE: viewing an apport-cli crash with default pager could
escalate privilege (LP: #2016023)
- apport/fileutils.py: Add get_process_environ()
- apport/ui.py, apport/user_group.py, bin/apport-cli: drops privilege to
users environment before execution
- test/test_fileutils.py, test/test_ui.py, test/test_user/group.py: Add
test cases for new code
- CVE-2023-1326
-- Benjamin Drung <email address hidden> Wed, 12 Apr 2023 19:00:36 +0200
|
| Source diff to previous version |
|
|
|
apport (2.20.11-0ubuntu82.1) jammy-security; urgency=medium
* SECURITY UPDATE: Fix multiple security issues
- data/apport: Fix too many arguments for error_log().
- data/apport: Use proper argument variable name executable_path.
- etc/init.d/apport: Set core_pipe_limit to a non-zero value to make
sure the kernel waits for apport to finish before removing the /proc
information.
- apport/fileutils.py, data/apport: Search for executable name if one
wan't provided such as when being called in a container.
- data/apport: Limit memory and duration of gdbus call. (CVE-2022-28654,
CVE-2022-28656)
- data/apport, apport/fileutils.py, test/test_fileutils.py: Validate
D-Bus socket location. (CVE-2022-28655)
- apport/fileutils.py, test/test_fileutils.py: Turn off interpolation
in get_config() to prevent DoS attacks. (CVE-2022-28652)
- Refactor duplicate code into search_map() function.
- Switch from chroot to container to validating socket owner.
(CVE-2022-1242, CVE-2022-28657)
- data/apport: Clarify error message.
- apport/fileutils.py: Fix typo in comment.
- apport/fileutils.py: Do not call str in loop.
- data/apport, etc/init.d/apport: Switch to using non-positional
arguments. Get real UID and GID from the kernel and make sure they
match the process. Also fix executable name space handling in
argument parsing. (CVE-2022-28658, CVE-2021-3899)
-- Marc Deslauriers <email address hidden> Tue, 10 May 2022 09:23:35 -0400
|
|
|
About
-
Send Feedback to @ubuntu_updates
