8 matches found
CVE-2019-16729
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...
Debian: Security Advisory (DSA-4555-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-4555-1 : pam-python - security update
Malte Kraus discovered that libpam-python, a PAM module allowing PAM modules to be written in Python, didn't sanitise environment variables which could result in local privilege escalation if used with a setuid binary. C Tenable Network Security, Inc. The descriptive text and package checks in th...
[SECURITY] [DSA 4555-1] pam-python security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4555-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 29, 2019 https://www.debian.org/security/faq -...
CVE-2019-16729
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...
CVE-2019-16729
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...
CVE-2019-16729
CVE-2019-16729 affects pam-python prior to 1.0.7-1, where mishandling of environment variables in Python within PAM could allow a local user to escalate to root in affected PAM configurations. The issue is documented in Ubuntu USN advisories (USN-4552-1/2/3) and related OSS advisories, with Ubunt...
CVE-2019-16729
pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...