Qualys Reports Two Information Disclosure Flaws in Linux Core Dump Managers
BreakingNewsHackingSecurityhackingnewsinformationsecuritynewsITInformationSecurityLINUXPierluigiPaganiniSecurityAffairsSecurityNews
Qualys has reported two information disclosure vulnerabilities in apport and systemd-coredump, the core dump managers in Ubuntu, Red Hat Enterprise Linux, and Fedora distributions. Researchers discovered a vulnerability in Apport, Ubuntu's core dump manager, and another flaw in systemd-coredump, which is used in the default configuration of Red Hat Enterprise Linux 9 and the Fedora distribution. systemd-coredump automatically captures core dumps, which can lead to the disclosure of sensitive data.