2 matches found
CVE-2018-6558
The vulnerability CVE-2018-6558 affects the pam_fscrypt module of fscrypt, where versions prior to 0.2.4 may incorrectly restore primary and supplementary group IDs to the values of the root user. This flaw can allow an unprivileged attacker to gain privileges through login flows used by applicat...
CVE-2018-6558
The pamfscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM aka pam...