ABRT

CVEs (9)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2025-12744	Docker CLI	Hig	0.60	8.8	0.00	Dec 3, 2025	A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload…
CVE-2026-54228	Red Hat ABRT	Hig	0.51	7.8	—	Jun 13, 2026	A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement method. Between dump directory creation and post-create event execution, any local user can call SetElement to write arbitrary text files into the root-owned dump directory,…
CVE-2026-54229	Red Hat ABRT	Hig	0.45	7.0	—	Jun 13, 2026	A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. ChownProblemDir opens the dump directory with DD_OPEN_READONLY and calls dd_chown to change ownership of all files to the caller's uid, succeeding even while post-create event handlers hold a…
CVE-2015-3142	Red Hat Automatic Bug Reporting Tool	Med	0.31	4.7	0.00	Jun 26, 2017	The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a…
CVE-2015-3150	Red Hat ABRT		0.00	—	0.00	Jan 14, 2020	abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.
CVE-2015-3147	Red Hat ABRT		0.00	—	0.01	Jan 14, 2020	daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.
CVE-2015-1869	Red Hat ABRT		0.00	—	0.00	Jan 14, 2020	The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to gain privileges as demonstrated by a symlink attack on a var_log_messages file.
CVE-2013-4209	Red Hat ABRT		0.00	—	0.00	May 1, 2018	Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums.
CVE-2012-5660	Red Hat Automatic Bug Reporting Tool		0.00	—	0.00	Mar 12, 2013	abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store information about crashes."

CVE-2025-12744HigDec 3, 2025
Docker
CLI
risk 0.60cvss 8.8epss 0.00
A flaw was found in the ABRT daemon’s handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command (docker inspect %s) without proper validation. An unprivileged local user can craft a payload…
CVE-2026-54228HigJun 13, 2026
Red Hat
ABRT
risk 0.51cvss 7.8epss —
A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement method. Between dump directory creation and post-create event execution, any local user can call SetElement to write arbitrary text files into the root-owned dump directory,…
CVE-2026-54229HigJun 13, 2026
Red Hat
ABRT
risk 0.45cvss 7.0epss —
A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. ChownProblemDir opens the dump directory with DD_OPEN_READONLY and calls dd_chown to change ownership of all files to the caller's uid, succeeding even while post-create event handlers hold a…
CVE-2015-3142MedJun 26, 2017
Red Hat
Automatic Bug Reporting Tool
risk 0.31cvss 4.7epss 0.00
The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a…
CVE-2015-3150Jan 14, 2020
Red Hat
ABRT
risk 0.00cvss —epss 0.00
abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.
CVE-2015-3147Jan 14, 2020
Red Hat
ABRT
risk 0.00cvss —epss 0.01
daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.
CVE-2015-1869Jan 14, 2020
Red Hat
ABRT
risk 0.00cvss —epss 0.00
The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to gain privileges as demonstrated by a symlink attack on a var_log_messages file.
CVE-2013-4209May 1, 2018
Red Hat
ABRT
risk 0.00cvss —epss 0.00
Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums.
CVE-2012-5660Mar 12, 2013
Red Hat
Automatic Bug Reporting Tool
risk 0.00cvss —epss 0.00
abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store information about crashes."