{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "18.04" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "20.04" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "22.04" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "22.10" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "2.26.0" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "e6a2a079d234222b4672a70dabce16c1bf0ddd3b" }, { "fixed": "e5f78cc89f1f5888b6a56b785dddcb0364c48ecb" } ], "repo": "https://github.com/canonical/apport", "type": "GIT" } ] } ], "details": "A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privilege. It is extremely unlikely that a system administrator would configure sudo to allow unprivileged users to perform this class of exploit.", "id": "CVE-2023-1326", "modified": "2026-03-13T21:57:47.181914498Z", "published": "2023-04-13T23:15:07.180Z", "references": [ { "type": "ADVISORY", "url": "https://ubuntu.com/security/notices/USN-6018-1" }, { "type": "FIX", "url": "https://github.com/canonical/apport/commit/e5f78cc89f1f5888b6a56b785dddcb0364c48ecb" } ], "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }