NewStart CGSL MAIN 6.06 (SP) : cracklib Vulnerability (NS-SA-2026-0019)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has cracklib packages installed that are affected by a vulnerability: - Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain...

EUVD-2007-1397

Malware in sbrugna...

EUVD-1999-1121

Malware in sbrugna...

NewStart CGSL MAIN 6.06 : cracklib Vulnerability (NS-SA-2025-0214)

The remote NewStart CGSL host, running version MAIN 6.06, has cracklib packages installed that are affected by a vulnerability: - Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain...

OPENSUSE-SU-2024:10359-1 cracklib-2.9.5-2.6 on GA media

These are all security issues fixed in the cracklib-2.9.5-2.6 package on the GA media of openSUSE Tumbleweed...

RHEL 7 : cracklib (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - cracklib: Stack-based buffer overflow when parsing large GECOS field CVE-2016-6318 Note that Nessus has not tested...

RHEL 5 : cracklib (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - cracklib: Stack-based buffer overflow when parsing large GECOS field CVE-2016-6318 Note that Nessus has not tested...

RHEL 6 : cracklib (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - cracklib: Stack-based buffer overflow when parsing large GECOS field CVE-2016-6318 Note that Nessus has not tested...

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : PAM vulnerability (USN-6588-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6588-1 advisory. Matthias Gerstner discovered that the PAM pamnamespace module incorrectly handled special files when performing directory checks. A...

SUSE CVE-2016-6318

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service application crash or gain privileges via a long GECOS field, involving longbuffer...

new packages: cracklib

An update is available for cracklib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterpris...

MoinMoin Denial of Service vulnerability via password_checker function

The passwordchecker function in config/multiconfig.py in MoinMoin prior to version 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a denial of service segmentation fault and crash via unknown vectors...

GHSA-WJJC-M3FC-FCM8 MoinMoin Denial of Service vulnerability via password_checker function

The passwordchecker function in config/multiconfig.py in MoinMoin prior to version 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a denial of service segmentation fault and crash via unknown vectors...

Mageia: Security Advisory (MGASA-2016-0302)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

cracklib is vulnerable to denial of service. The vulnerability exists because of a stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib when parsing large GECOS field...

SUSE: Security Advisory (SUSE-SU-2016:2211-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2107-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for cracklib (EulerOS-SA-2019-2439)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP2 : cracklib (EulerOS-SA-2019-2439)

According to the version of the cracklib packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - CrackLib tests passwords to determine whether they match certain security-oriented characteristics, with the purpose of stopping users from...

Photon OS 1.0: Cracklib PHSA-2017-0013

An update of the cracklib package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0013. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121681;...