Unrated severityNVD Advisory· Published Dec 10, 2025· Updated Dec 10, 2025

Ubuntu Apport Insecure File Permissions Vulnerability

CVE-2025-5467

Description

It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool may create crash files with incorrect group ownership, possibly exposing crash information beyond expected or intended groups.

Affected products

Apport Project/Apportllm-fuzzy
Canonical/apportv5
Range: 2.20.11-0ubuntu82

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.launchpad.net/apport/+bug/2106338mitre
www.stratascale.com/resource/cve-2025-32462-ubuntu-apport-vulnerability/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000