Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2015-1338

kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.

  • Published: Oct 1, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-1338
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
apport_project / apport - 2.18.1.x
canonical / ubuntu_linux 12.04 12.04.x
canonical / ubuntu_linux 14.04 14.04.x
canonical / ubuntu_linux 15.04 15.04.x