CVE-2015-1318

Publication date 14 April 2015

Last updated 24 July 2024

The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to gain privileges via a crafted usr/share/apport/apport file in a namespace (container).

Status

Show unmaintained releases

Package	Ubuntu Release	Status
apport	14.10 utopic	Fixed 2.14.7-0ubuntu8.3
	14.04 LTS trusty	Fixed 2.14.1-0ubuntu3.9
	12.04 LTS precise	Not affected
	10.04 LTS lucid	Not affected

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-2569-1
Apport vulnerability
14 April 2015

Other references

https://www.cve.org/CVERecord?id=CVE-2015-1318