4 matches found
Exploit for Insertion of Sensitive Information into Log File in Canonical Subiquity
CVE-2020-11932 :bug::mag: Check CVE-2020-11932 and test for h...
CVE-2020-11932
It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered...
CVE-2020-11932
It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered...
CVE-2020-11932
CVE-2020-11932 affects the Subiquity installer for Ubuntu Server. It discloses that the LUKS full-disk encryption password, entered during setup, could be logged in plaintext within installer-related logs (e.g., curtin-install.log, installer-journal.txt, curtin-install-cfg.yaml). The available co...