EUVD-2016-8450

Malware in sbrugna...

SUSE-SU-2022:2253-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22967: Fixed missing check for PAMACCTMGM return value that could be used to bypass authentication when using PAM bsc1200566...

SUSE: Security Advisory (SUSE-SU-2022:2159-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-22967

An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an...

PT-2022-4658 · Unknown +9 · Pacemaker Configuration Tool +9

Name of the Vulnerable Software and Affected Versions: Pacemaker configuration tool pcs affected versions not specified Description: A flaw was found in the Pacemaker configuration tool, allowing expired accounts and accounts with expired passwords to login when using PAM authentication. This iss...

SUSE-SU-2016:0972-1 Security update for salt

salt was updated to fix one security issue. This security issue was fixed: - CVE-2016-3176: Insecure configuration of PAM external authentication service. Authenticating were able to specify the PAM service bsc972436...

CVE-2003-1562

sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, which makes it easier for remote attackers to use timing differences to determine if the password...