The vulnerability of the etc/shadow microprogramming software components of Cisco Small Business RV016, RV042, RV042G, and RV082 allows a hacker to elevate their privileges to the level of root or lldpd.

The vulnerability of the etc/shadow microprogramming software components of Cisco Small Business RV016, RV042, RV042G, and RV082 is related to the presence of embedded authentication data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the level of root or lldp...

Debian DSA-015-1 : sash - broken maintainer script

Versions of the sash package prior to 3.4-4 did not clone /etc/shadow properly, causing it to be made world-readable. This package only exists in stable, so if you are running unstable you won't see a bugfix unless you use the resources from the bottom of this message to the proper configuration...