CVE-2020-36394

pamsetquota.c in the pamsetquota module before 2020-05-29 for Linux-PAM allows local attackers to set their quota on an arbitrary filesystem, in certain situations where the attacker's home directory is a FUSE filesystem mounted under /home...

ROS-20250402-06

Vulnerability of pamsmauthenticate function of PAM-PKCS11 authentication module of Linux operating systems is related to authentication errors. Exploitation of the vulnerability could allow an attacker acting remotely, bypass the authentication procedure and gain unauthorized access to protected...

GHSA-7GM5-M2XC-VH2J vulnerabilities

Vulnerabilities for packages: linux-pam...

GHSA-7GM5-M2XC-VH2J vulnerabilities

Vulnerabilities for packages: linux-pam...

SUSE CVE-2025-24032

PAM-PKCS11 is a Linux-PAM login module that allows a X.509 certificate based user login. Prior to version 0.6.13, if certpolicy is set to none the default value, then pampkcs11 will only check if the user is capable of logging into the token. An attacker may create a different token with the user...

CVE-2025-24032 PAM-PKCS#11 vulnerable to authentication bypass with default value for `cert_policy` (`none`)

PAM-PKCS11 is a Linux-PAM login module that allows a X.509 certificate based user login. Prior to version 0.6.13, if certpolicy is set to none the default value, then pampkcs11 will only check if the user is capable of logging into the token. An attacker may create a different token with the user...

CVE-2025-24032 PAM-PKCS#11 vulnerable to authentication bypass with default value for `cert_policy` (`none`)

PAM-PKCS11 is a Linux-PAM login module that allows a X.509 certificate based user login. Prior to version 0.6.13, if certpolicy is set to none the default value, then pampkcs11 will only check if the user is capable of logging into the token. An attacker may create a different token with the user...

CVE-2025-24031

CVE-2025-24031 affects the PAM-PKCS#11 Linux-PAM module (version 0.6.12 and earlier). The issue is a dereference of an uninitialized pointer when a user enters no PIN, and a segfault when a user presses Ctrl-C/Ctrl-D during PIN entry, producing an availability impact (daemon crash). The vulnerabi...

CVE-2025-24031 PAM-PKCS#11 vulnerable to segmentation fault on ctrl-c/ctrl-d when asked for PIN

PAM-PKCS11 is a Linux-PAM login module that allows a X.509 certificate based user login. In versions 0.6.12 and prior, the pampkcs11 module segfaults when a user presses ctrl-c/ctrl-d when they are asked for a PIN. When a user enters no PIN at all, pamgetpwd will never initialize the password...

Security Bulletin: IBM DataPower Gateway vulnerable to DoS (CVE-2024-22365)

Summary This vulnerablility may affect database access, and DataPower Virtual Edition. Vulnerability Details CVEID:CVE-2024-22365 DESCRIPTION: Linux-pam is vulnerable to a denial of service, caused by a flaw in pamnamespace.so. By sending a specially crafted request, a local attacker could exploi...

Advisory ROSA-SA-2025-2608

software: pam 1.5.1 OS: ROSA-CHROME packageevrstring: pam-1.5.1-5 CVE-ID: CVE-2024-22365 BDU-ID: 2024-00829 CVE-Crit: LOW CVE-DESC.: A vulnerability in the protectdir pamnamespace.so function of the Linux-PAM authentication module is related to incorrect resource sweep or release. Exploitation of...

PT-2025-25653

Name of the Vulnerable Software and Affected Versions linux-pam affected versions not specified Description A flaw in the pam namespace module of linux-pam allows local users to elevate their privileges to root via multiple symlink attacks and race conditions. This occurs when a user can launch a...

PT-2025-6041 · Unknown +5 · Pam Pkcs11 +5

Name of the Vulnerable Software and Affected Versions: pam pkcs11 versions 0.6.0 through 0.6.12 Description: PAM-PKCS11 is a Linux-PAM login module that allows a X.509 certificate based user login. If cert policy is set to none the default value, then pam pkcs11 will only check if the user is...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2024-2655)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2024-2621)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-10041 vulnerabilities

Vulnerabilities for packages: linux-pam...

CVE-2024-10041 vulnerabilities

Vulnerabilities for packages: linux-pam...

Linux-pam 安全漏洞

Linux-pam is a pluggable-supported system authentication software for Linux from the Linux team. A security vulnerability exists in Linux-pam, which stems from confidential information stored in memory that can trigger execution of a victim program by sending characters to its standard input stdi...

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20230302.102001)

The version of AHV installed on the remote host is prior to 20230302.102005. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-20230302.102001 advisory. - squashfsopendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different vulnerability...

EulerOS 2.0 SP8 : pam (EulerOS-SA-2024-2483)

According to the versions of the pam packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : linux-pam aka Linux PAM before 1.6.0 allows attackers to cause a denial of service blocked login process via mkfifo because the openat call for...