Untriaged
Permalink
CVE-2022-28652
5.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
~/.config/apport/settings parsing is vulnerable to "billion laughs" attack
~/.config/apport/settings parsing is vulnerable to "billion laughs" attack
References
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking x_transferred
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory x_transferred
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking x_transferred
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory x_transferred
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking
- https://ubuntu.com/security/notices/USN-5427-1 vendor-advisory x_transferred
- https://www.cve.org/CVERecord?id=CVE-2022-28652 issue-tracking x_transferred
Affected products
apport
- <2.21.0
Matching in nixpkgs
pkgs.haskellPackages.apportionment
Round a set of numbers while maintaining its sum
-
nixos-unstable -
- nixpkgs-unstable 0.0.0.4
Package maintainers
-
@thielema Henning Thielemann <nix@henning-thielemann.de>