Code execution bugs are valuable. All Ubuntu Desktop versions Visit the following links: If you have any problems with the registration process or your account login, please contact us.
Please visit this page to clear all LQ-related cookies.
Password Linux - Server This forum is for the discussion of Linux Software used in a server related context. No apport report written because MaxReports is reached already dpkg: error processing libgweather-common --configure : subprocess installed post-installation script returned error exit status No apport report written because MaxReports is reached already dpkg: dependency problems prevent configuration of libgweather1: libgweather1 depends on libgtk2.
When a user opens a file, the desktop environment first determines the file format and then launches the corresponding application. When opening system crash files apport-crashreports will use PolicyKit to prompt the desktop user for root privileges.
Package information is retrieved based on the executable path and this is used to provide a more friendly application name and icon in the prompt.
While user interaction is required, people who have used Ubuntu for any period of time will be used to seeing these privilege prompts after random crashes. Share this:. A bug like this allows a low-privileged application to cross privilege boundaries.
The path traversal vulnerability was introduced on in Apport 0. However the Package field from the crash report file is used without sanitization when building a path to the package hook files.
Introduction to Linux - A Hands on Guide This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.