CVE-2021-32557 is a vulnerability in Canonical Apport
Published on June 12, 2021
apport process_report() arbitrary file write
It was discovered that the process_report() function in data/whoopsie-upload-all allowed arbitrary file writes via symlinks.
Vulnerability Analysis
CVE-2021-32557 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity and availability.
Weakness Types
What is an insecure temporary file Vulnerability?
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CVE-2021-32557 has been classified to as an insecure temporary file vulnerability or weakness.
What is a Symlink following Vulnerability?
The software, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the software to operate on unauthorized files. A software system that allows UNIX symbolic links (symlink) as part of paths whether in internal code or through user input can allow an attacker to spoof the symbolic link and traverse the file system to unintended locations or access arbitrary files. The symbolic link can permit an attacker to read/write/corrupt a file that they originally did not have permissions to access.
CVE-2021-32557 has been classified to as a Symlink following vulnerability or weakness.
Products Associated with CVE-2021-32557
Want to know whenever a new CVE is published for Canonical Apport? stack.watch will email you.
Affected Versions
Canonical apport:- Version 2.20.1 and below 2.20.1-0ubuntu2.30+esm1 is affected.
- Version 2.20.9 and below 2.20.9-0ubuntu7.24 is affected.
- Version 2.20.11-0ubuntu27 and below 2.20.11-0ubuntu27.18 is affected.
- Version 2.20.11-0ubuntu50 and below 2.20.11-0ubuntu50.7 is affected.
- Version 2.20.11-0ubuntu65 and below 2.20.11-0ubuntu65.1 is affected.
- Version 2.14.1-0ubuntu3 and below 2.14.1-0ubuntu3.29+esm7 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.