Azure Linux 3.0 Security Update: accountsservice (CVE-2023-3297)

The version of accountsservice installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3297 advisory. - In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerabilit...

EUVD-2023-43972

Malicious code in bioql PyPI...

SUSE CVE-2022-1804

accountsservice no longer drops permissions when writting .pamenvironment...

CVE-2022-1804

accountsservice no longer drops permissions when writting .pamenvironment...

AZL-66686 CVE-2022-1804 affecting package accountsservice 0.6.55-4

accountsservice no longer drops permissions when writting .pamenvironment...

CVE-2022-1804 Accountsservice incorrectly drops privileges

accountsservice no longer drops permissions when writting .pamenvironment...

CVE-2022-1804

accountsservice no longer drops permissions when writting .pamenvironment...

CVE-2012-6655 affecting package accountsservice for versions less than 23.13.9-1

CVE-2012-6655 affecting package accountsservice for versions less than 23.13.9-1. An upgraded version of the package is available that resolves this issue...

In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice

...

OPENSUSE-SU-2024:10244-1 accountsservice-0.6.43-1.1 on GA media

These are all security issues fixed in the accountsservice-0.6.43-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10611-1 accountsservice-0.6.55-8.2 on GA media

These are all security issues fixed in the accountsservice-0.6.55-8.2 package on the GA media of openSUSE Tumbleweed...

RHEL 7 : accountsservice (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - accountsservice: local encrypted password disclosure when changing password CVE-2012-6655 Note that Nessus has not...

Ubuntu: Security Advisory (USN-6687-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6687-1: AccountsService vulnerability

It was discovered that AccountsService called a helper incorrectly when performing password change operations. A local attacker could possibly use this issue to obtain encrypted passwords...

Ubuntu 20.04 LTS / 22.04 LTS : AccountsService vulnerability (USN-6687-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6687-1 advisory. It was discovered that AccountsService called a helper incorrectly when performing password change operations. A local attacker could possibly use thi...

Ubuntu: Security Advisory (USN-6190-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6190-2: AccountsService vulnerability

USN-6190-1 fixed a vulnerability in AccountsService. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: Kevin Backhouse discovered that AccountsService incorrectly handled certain D-Bus messages. A local attacker...

Ubuntu 16.04 ESM / 18.04 ESM : AccountsService vulnerability (USN-6190-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6190-2 advisory. USN-6190-1 fixed a vulnerability in AccountsService. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu...

CVE-2023-3297

In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process...

AZL-44259 CVE-2023-3297 affecting package accountsservice for versions less than 23.13.9-1

In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process...