CVE-2019-11481 LOW

CVE-2019-11481: Apport reads arbitrary files if ~/.config/apport/settings is a symlink

Vendor Canonical
Product apport
Published February 8, 2020
Last update September 16, 2024

CVSS base score

3.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

What the vulnerability does

01Description

Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the file with a symbolic link, a user could get apport to read any file on the system as root, with unknown consequences.

Key dates

02Disclosure timeline

February 8, 2020 CVE published
September 16, 2024 Record updated