Vulnerability DatabaseCVE-2019-11483

CVE-2019-11483:
Linux Ubuntu vulnerability analysis and mitigation

Overview

CVE-2019-11483 is a vulnerability discovered by Sander Bos in Ubuntu's Apport crash handling system. The vulnerability was disclosed on April 23, 2019, affecting the Apport package which automatically generates crash reports for debugging. The issue specifically involves the mishandling of crash dumps originating from containers (Ubuntu Security, MITRE CVE).

Technical details

The vulnerability has a CVSS 3.1 Base Score of 3.3 (Low), with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. This indicates a local attack vector, low attack complexity, low privileges required, no user interaction needed, unchanged scope, low confidentiality impact, and no impact on integrity or availability (Ubuntu Security).

Impact

When exploited, this vulnerability allows a local attacker to generate a crash report for a privileged process that is readable by an unprivileged user, potentially exposing sensitive information (Ubuntu Security Notice).

Mitigation and workarounds

The vulnerability has been fixed in multiple Ubuntu versions with the following package updates: Ubuntu 19.10 (2.20.11-0ubuntu8.1), Ubuntu 19.04 (2.20.10-0ubuntu27.2), Ubuntu 18.04 LTS (2.20.9-0ubuntu7.8), Ubuntu 16.04 LTS (2.20.1-0ubuntu2.20), and Ubuntu 14.04 LTS (2.14.1-0ubuntu3.29+esm2). Users are advised to update their systems to these versions (Ubuntu Security Notice).

Additional resources

Source: This report was generated using AI

Related Linux Ubuntu vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-22797	CRITICAL	9.9	Linux Debian	python-keystonemiddleware	No	Yes	Jan 19, 2026
CVE-2025-24528	HIGH	7.1	Kerberos	krb5	No	Yes	Jan 16, 2026
CVE-2025-24531	MEDIUM	6.7	Linux Debian	pam-pkcs11	No	Yes	Jan 16, 2026
CVE-2025-15536	MEDIUM	4.8	Linux Debian	opencc	No	No	Jan 18, 2026
CVE-2025-43904	MEDIUM	4.2	Linux Debian	slurm-doc	No	Yes	Jan 16, 2026