CVE-2013-4285
The CVE concerns Gentoo’s patch to the PAM S/Key module that fails to clear credentials from memory. A local attacker with privileged access could inspect memory dumps to obtain cleartext credentials. Affected software is the PAM S/Key module used by Gentoo; the underlying issue is that credentia...