Ubuntu apport TOCTOU security vulnerability (CVE-2019-7307)

This is the second post in our series about Ubuntu’s crash reporting system. We’ll review CVE-2019-7307, a TOCTOU vulnerability that enables a local attacker to include the contents of ...

By Sonic Mustang · March 16, 2026 · 1 min read

Ubuntu apport TOCTOU security vulnerability (CVE-2019-7307)

security
vulnerability research
github security lab
ubuntu
vulnerability research

Source: The GitHub Blog

This is the second post in our series about Ubuntu’s crash reporting system. We’ll review CVE-2019-7307, a TOCTOU vulnerability that enables a local attacker to include the contents of any file on the system in a crash report.