7.8
CVSSv3

CVE-2019-11476

Published: 29/08/2019 Updated: 21/11/2024

Vulnerability Summary

An integer overflow in whoopsie prior to 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie process.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

canonical ubuntu linux 16.04

canonical ubuntu linux 18.04

canonical ubuntu linux 18.10

canonical ubuntu linux 19.04

Vendor Advisories

Whoopsie could be made to crash or expose sensitive information if it processed a specially crafted crash report ...