Lucene search
UbuntuUSN-4552-3HistoryOct 28, 2020 - 12:00 a.m.
Pam-python regression
2020-10-2800:00:00
ubuntu.com
36
Releases
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
Packages
- pam-python - Enables PAM modules to be written in Python
Details
USN-4552-1 and USN-4552-2 fixed a vulnerability in Pam-python. The update
introduced a regression which prevented PAM modules written in Python from
importing python modules from site-specific directories.
We apologize for the inconvenience.
Original advisory details:
Malte Kraus discovered that Pam-python mishandled certain environment variables.
A local attacker could potentially use this vulnerability to execute programs
as root.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 18.04 | noarch | libpam-python | < 1.0.6-1.1+deb10u1ubuntu0.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libpam-python-dbgsym | < 1.0.6-1.1+deb10u1ubuntu0.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libpam-python-doc | < 1.0.6-1.1+deb10u1ubuntu0.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libpam-python | < 1.0.4-1.1+deb8u1ubuntu0.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libpam-python-dbgsym | < 1.0.4-1.1+deb8u1ubuntu0.1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libpam-python-doc | < 1.0.4-1.1+deb8u1ubuntu0.1 | UNKNOWN |
References
Related
nessus
nessus
Debian DLA-2000-1 : pam-python security update
2019-11-25 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : Pam-python regression (USN-4552-3)
2020-10-29 00:00:00
Ubuntu 18.04 LTS : Pam-python vulnerability (USN-4552-1)
2020-09-28 00:00:00
debian
debian
[SECURITY] [DLA 2000-1] pam-python security update
2019-11-23 09:05:36
[SECURITY] [DSA 4555-1] pam-python security update
2019-10-29 22:29:35
osv
osv
pam-python vulnerability
2020-10-21 19:28:44
pam-python - security update
2019-11-23 00:00:00
pam-python regression
2020-10-28 16:23:03
cve
cve
CVE-2019-16729
2019-09-24 05:15:00
openvas
openvas
Debian: Security Advisory (DLA-2000-1)
2019-11-26 00:00:00
Debian: Security Advisory (DSA-4555-1)
2019-10-31 00:00:00
Ubuntu: Security Advisory (USN-4552-1)
2020-09-29 00:00:00
ubuntu
ubuntu
Pam-python vulnerability
2020-10-21 00:00:00
Pam-python vulnerability
2020-09-28 00:00:00
debiancve
debiancve
CVE-2019-16729
2019-09-24 05:15:00
ubuntucve
ubuntucve
CVE-2019-16729
2019-09-24 00:00:00
prion
prion
Design/Logic Flaw
2019-09-24 05:15:00
cvelist
cvelist
CVE-2019-16729
2019-09-24 04:07:28