{"id":1354,"date":"2016-12-23T12:43:00","date_gmt":"2016-12-23T12:43:00","guid":{"rendered":"https:\/\/antivirus.comodo.com\/blog\/?p=1354"},"modified":"2020-08-18T23:17:17","modified_gmt":"2020-08-18T17:47:17","slug":"vulnerable-bug-discovered-ubuntu-linux","status":"publish","type":"post","link":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/","title":{"rendered":"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux"},"content":{"rendered":"

There are bugs in Ubuntu Linux too, and recently cyber security researchers have discovered a bug in the Apport crash handling software that is being shipped as a standard component of Ubuntu Linux releases. A cyber criminal can exploit this vulnerability by injecting malicious code and deceive Linux into opening the malicious file.<\/p>\n

\"linux<\/p>\n

 <\/p>\n

Where is the vulnerability?<\/strong><\/p>\n

The Apport crash handling software is a standard crash reporting tool that is being provided along with all recent releases of Ubuntu Linux. Exploiting a bug in this tool is by itself ingenious. Cyber criminals can create crash files that contain malicious code written in Python. When the tool parses the code the Python code gets executed \u2013 the malware gets executed.<\/p>\n

The code just fools Ubuntu into executing the code as it looks as simple authentic code. Remote access tools or RATs are commonly used by hackers to perform surreptitious activities on remotely accessed computers and devices. Many RAT tools are highly advanced that have gone undetected for very long periods of time. And cybercriminals have been stealing data from such “had” devices and have also used such devices as part of bot networks. Using RATs is pretty common for executing malicious code by accessing devices through remote access.<\/p>\n

This remote code execution bug had been reported by Donncha O\u2019Cearbhaill, a security researcher, who stated: \u201cThe code first checks if the CrashDB field starts with { indicating the start of a Python dictionary.\u201d Adding: “If { is found, Apport calls Python\u2019s eval() method with the value of CrashDB field. The passed data is executed as a Python expression, leading to Python code execution.”<\/p>\n

O\u2019Cearbhaill reports that the vulnerability exists in all default version installations of Ubuntu 12.10 and later.<\/p>\n

However, Ubuntu Linux users need not worry as the vulnerability has been addressed as an update that fixes this bug. As a Ubuntu Linux user all you have to do is ensure regular updates are done. Further, a Patch management<\/a> system along with a robust\u00a0Antivirus for Linux<\/a> would ensure security of the system from hackers with malicious intent.<\/p>\n

\"comodo<\/a><\/p>\n

\"comodo<\/a><\/p>\n

Related Resources<\/strong><\/p>\n

https:\/\/www.comodo.com\/home\/internet-security\/antivirus-for-linux.php<\/a><\/strong><\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

There are bugs in Ubuntu Linux too, and recently cyber security researchers have discovered a bug in the Apport crash handling software that is being shipped as a standard component of Ubuntu Linux releases. A cyber criminal can exploit this vulnerability by injecting malicious code and deceive Linux into opening the malicious file.   Where […]<\/p>\n","protected":false},"author":5,"featured_media":1471,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[75,89],"class_list":["post-1354","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-computer-safety","tag-antivirus-for-linux","tag-linux-vulnerability"],"yoast_head":"\nVulnerable Remote Code Execution Bug Discovered in Ubuntu Linux<\/title>\n<meta name=\"description\" content=\"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux\" \/>\n<meta property=\"og:description\" content=\"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/\" \/>\n<meta property=\"og:site_name\" content=\"Comodo Antivirus Blogs | Anti-Virus Software Updates\" \/>\n<meta property=\"article:published_time\" content=\"2016-12-23T12:43:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-18T17:47:17+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"225\" \/>\n\t<meta property=\"og:image:height\" content=\"170\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"seo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"seo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/\",\"name\":\"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux\",\"isPartOf\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg\",\"datePublished\":\"2016-12-23T12:43:00+00:00\",\"dateModified\":\"2020-08-18T17:47:17+00:00\",\"author\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\"},\"description\":\"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.\",\"breadcrumb\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg\",\"contentUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg\",\"width\":225,\"height\":170},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/antivirus.comodo.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/\",\"name\":\"Comodo Antivirus Blogs | Anti-Virus Software Updates\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\",\"name\":\"seo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"caption\":\"seo\"},\"url\":\"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux","description":"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/","og_locale":"en_US","og_type":"article","og_title":"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux","og_description":"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.","og_url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/","og_site_name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","article_published_time":"2016-12-23T12:43:00+00:00","article_modified_time":"2020-08-18T17:47:17+00:00","og_image":[{"width":225,"height":170,"url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg","type":"image\/jpeg"}],"author":"seo","twitter_card":"summary_large_image","twitter_misc":{"Written by":"seo","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/","url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/","name":"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux","isPartOf":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage"},"image":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage"},"thumbnailUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg","datePublished":"2016-12-23T12:43:00+00:00","dateModified":"2020-08-18T17:47:17+00:00","author":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462"},"description":"Cyber security researchers recently discovered a bug in the Apport crash handling software being shipped as a standard component of Ubuntu Linux releases.","breadcrumb":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#primaryimage","url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg","contentUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/12\/RF-10296_thb_6.jpg","width":225,"height":170},{"@type":"BreadcrumbList","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/vulnerable-bug-discovered-ubuntu-linux\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/antivirus.comodo.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Vulnerable Remote Code Execution Bug Discovered in Ubuntu Linux"}]},{"@type":"WebSite","@id":"https:\/\/antivirus.comodo.com\/blog\/#website","url":"https:\/\/antivirus.comodo.com\/blog\/","name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462","name":"seo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","caption":"seo"},"url":"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/"}]}},"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1354","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/comments?post=1354"}],"version-history":[{"count":27,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1354\/revisions"}],"predecessor-version":[{"id":15029,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1354\/revisions\/15029"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media\/1471"}],"wp:attachment":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media?parent=1354"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/categories?post=1354"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/tags?post=1354"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}