Sander Bos discovered that Apport incorrectly handled permissions whenthe system was configured to generate core dumps for setuid binaries. Alocal attacker could use this issue to gain elevated privileges.(CVE-2015-1324)
Philip Pettersson discovered that Apport contained race conditionsresulting core dumps to be generated with incorrect permissions inarbitrary locations. A local attacker could use this issue to gain elevatedprivileges. (CVE-2015-1325)
The problem can be corrected by updating your system to the following
To update your system, please follow these instructions:
In general, a standard system update will make all the necessary changes.