CVE-2022-28652

Summary

~/.config/apport/settings parsing is vulnerable to "billion laughs" attack

Affected Software

VendorProductVersion RangeStatus
Canonical Ltd.Apport0 < 2.21.0affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References