Launchpad.net

CVE 2021-25684

It was discovered that apport in data/apport did not properly open a report file to prevent hanging reads on a FIFO.

CVE-2021-25684 (Candidate) is related to these bugs:

Bug #1912326: Privilege escalation to root with core file dump

		In	Importance	Status
1912326	Privilege escalation to root with core file dump	apport (Ubuntu)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	apport (Ubuntu Hirsute)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	apport (Ubuntu Focal)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	apport (Ubuntu Xenial)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	apport (Ubuntu Bionic)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	apport (Ubuntu Groovy)	Undecided	Fix Released
1912326	Privilege escalation to root with core file dump	Apport	Critical	Fix Released

See the

CVE page on Mitre.org for more details.