Lucene search
GoogleOSV:GHSA-P93V-M2R2-4387HistoryMar 01, 2022 - 9:05 p.m.
Denial of service via insufficient metadata validation
2022-03-0121:05:01
Google
osv.dev
19
denial of service
metadata validation
pam module
fscrypt
cve-2022-25327
upgrade
login prevention
The PAM module for fscrypt through v0.3.2 doesn’t adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from logging in. A local user can cause a denial of service by creating a fscrypt metadata file that prevents other users from logging into the system. We recommend upgrading to v0.3.3 or above.
For more details, see CVE-2022-25327.
Related
osv
osv
CVE-2022-25327
2022-02-25 11:15:08
User login denial of service in github.com/google/fscrypt
2022-02-26 00:00:44
User login denial of service in github.com/google/fscrypt
2024-08-21 14:30:29
debiancve
debiancve
CVE-2022-25327
2022-02-25 11:15:08
prion
prion
Code injection
2022-02-25 11:15:00
github
github
User login denial of service in github.com/google/fscrypt
2022-02-26 00:00:44
Denial of service via insufficient metadata validation
2022-03-01 21:05:01
veracode
veracode
Denial Of Service (DoS)
2022-02-28 09:12:53
ubuntucve
ubuntucve
CVE-2022-25327
2022-02-25 00:00:00
cvelist
cvelist
CVE-2022-25327 Local Denial of Service in fscrypt PAM module
2022-02-25 11:00:14
cve
cve
CVE-2022-25327
2022-02-25 11:15:08
nvd
nvd
CVE-2022-25327
2022-02-25 11:15:08