apport (2.20.1-0ubuntu2.10) xenial-security; urgency=medium

  * SECURITY UPDATE: code execution through path traversial in
    .crash files (LP: #1700573)
    - apport/, test/ fix traversal issue
      and add a test for that.
    - debian/apport.install,, xdg-mime/apport.xml: removes
      apport as a file handler for .crash files. Thanks to Brian
      Murray for the patch and Felix Wilhelm for discovering this.
    - CVE-2017-10708

Date: 2017-07-17 22:36:14.907617+00:00
Changed-By: (Leonidas S. Barbosa)
Maintainer: Martin Pitt <>
Signed-By: Ubuntu Archive Robot 
Sorry, changesfile not available.
Xenial-changes mailing list
Modify settings or unsubscribe at:

Reply via email to