CVE-2015-1318 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2015-1318

The crash reporting feature in Apport 2.13 through 2.17.x before 2.17.1 allows local users to gain privileges via a crafted usr/share/apport/apport file in a namespace (container).

Published: Apr 17, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-1318
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
apport_project / apport	2.15.1	2.15.1.x
apport_project / apport	2.16	2.16.x
apport_project / apport	2.16.2	2.16.2.x
apport_project / apport	2.14.3	2.14.3.x
apport_project / apport	2.14.5	2.14.5.x
apport_project / apport	2.15	2.15.x
apport_project / apport	2.13	2.13.x
apport_project / apport	2.16.1	2.16.1.x
apport_project / apport	2.14.2	2.14.2.x
apport_project / apport	2.13.2	2.13.2.x
apport_project / apport	2.14.7	2.14.7.x
apport_project / apport	2.13.1	2.13.1.x
apport_project / apport	2.14.4	2.14.4.x
apport_project / apport	2.13.3	2.13.3.x
apport_project / apport	2.14.6	2.14.6.x
apport_project / apport	2.17	2.17.x
apport_project / apport	2.14.1	2.14.1.x
apport_project / apport	2.14	2.14.x