An unhandled exception in check_ignored() in apport/report.py can be exploited by a local attacker to cause a denial of service. If the mtime attribute is a string value in apport-ignore.xml, it will trigger an unhandled exception, resulting in a crash. Fixed in 2.20.1-0ubuntu2.24, 2.20.9-0ubuntu7.16, 2.20.11-0ubuntu27.6.
References
Link | Resource |
---|---|
https://launchpad.net/bugs/1877023 | Exploit Issue Tracking Third Party Advisory |
https://usn.ubuntu.com/4449-1 | Vendor Advisory |
https://usn.ubuntu.com/4449-1/ | Vendor Advisory |
https://usn.ubuntu.com/4449-2/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
24 Jan 2023, 02:45
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* |
|
References | (UBUNTU) https://usn.ubuntu.com/4449-2/ - Vendor Advisory |
Information
Published : 2020-08-06 23:15
Updated : 2023-12-10 13:27
NVD link : CVE-2020-15701
Mitre link : CVE-2020-15701
CVE.ORG link : CVE-2020-15701
JSON object : View
Products Affected
canonical
- apport
- ubuntu_linux
CWE
CWE-755
Improper Handling of Exceptional Conditions