CVE-2019-15790

Name of the Vulnerable Software and Affected Versions Apport versions prior to 2.20.11-0ubuntu16 Apport versions prior to 2.20.11-0ubuntu8.6 Apport versions prior to 2.20.9-0ubuntu7.12 Apport versions prior to 2.20.1-0ubuntu2.22 Apport versions prior to 2.14.1-0ubuntu3.29+esm3

Description The issue is related to the apport service in the Ubuntu operating system, which has inadequate access restrictions. An unprivileged user could exploit this to read information about a privileged running process by exploiting PID recycling. This information could then be used to obtain ASLR offsets for a process with an existing memory corruption vulnerability. The apport service reads and writes information on a crashed process to /proc/$PID with elevated privileges and determines which user the crashed process belongs to by reading /proc/$PID through the get pid info() function in data/apport.

Recommendations For Apport version prior to 2.20.11-0ubuntu16, update to version 2.20.11-0ubuntu16 or later. For Apport version prior to 2.20.11-0ubuntu8.6, update to version 2.20.11-0ubuntu8.6 or later. For Apport version prior to 2.20.9-0ubuntu7.12, update to version 2.20.9-0ubuntu7.12 or later. For Apport version prior to 2.20.1-0ubuntu2.22, update to version 2.20.1-0ubuntu2.22 or later. For Apport version prior to 2.14.1-0ubuntu3.29+esm3, update to version 2.14.1-0ubuntu3.29+esm3 or later.