Local Privilege Escalation via PID Namespace in Apport 2.13-2.20.7

Local Privilege Escalation via PID Namespace in Apport 2.13-2.20.7

CVE-2017-14180 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability than CVE-2017-14179.

Learn more about our User Device Pen Test.