CVE-2019-7307

Name of the Vulnerable Software and Affected Versions Apport versions prior to 2.14.1-0ubuntu3.29+esm1 Apport versions prior to 2.20.1-0ubuntu2.19 Apport versions prior to 2.20.9-0ubuntu7.7 Apport versions prior to 2.20.10-0ubuntu27.1 Apport versions prior to 2.20.11-0ubuntu5

Description The issue is caused by a Time-of-Check-to-Time-of-Use (TOCTTOU) vulnerability when reading the user's ~/.apport-ignore.xml file. This allows a local attacker to replace this file with a symlink to any other file on the system, causing Apport to include the contents of this other file in the resulting crash report. The crash report could then be read by that user, either by causing it to be uploaded and reported to Launchpad, or by leveraging some other vulnerability to read the resulting crash report, allowing the user to read arbitrary files on the system.

Recommendations For versions prior to 2.14.1-0ubuntu3.29+esm1, update to version 2.14.1-0ubuntu3.29+esm1 or later. For versions prior to 2.20.1-0ubuntu2.19, update to version 2.20.1-0ubuntu2.19 or later. For versions prior to 2.20.9-0ubuntu7.7, update to version 2.20.9-0ubuntu7.7 or later. For versions prior to 2.20.10-0ubuntu27.1, update to version 2.20.10-0ubuntu27.1 or later. For versions prior to 2.20.11-0ubuntu5, update to version 2.20.11-0ubuntu5 or later. As a temporary workaround, consider restricting access to the ~/.apport-ignore.xml file to minimize the risk of exploitation.