CLSA-2026-1777945742 shadow-utils: Fix of CVE-2017-12424

CVE-2017-12424: fix heap buffer overflow in commoniosort when an entry has a NULL line...

MiracleLinux 9 : shadow-utils-4.9-15.el9 (AXSA:2025-11140:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11140:02 advisory. shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise CVE-2024-56433 Tenable has extracted the preceding descriptio...

RHSA-2025:20145 Red Hat Security Advisory: shadow-utils security update

Bulletin has no description...

RHSA-2025:20559 Red Hat Security Advisory: shadow-utils security update

Bulletin has no description...

ALSA-2025:20559 Low: shadow-utils security update

The shadow-utils packages include programs for converting UNIX password files to the shadow password format, as well as utilities for managing user and group accounts. Security Fixes: shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise CVE-2024-56433 For...

EUVD-2006-1178

Malware in sbrugna...

EUVD-2002-1492

Malware in sbrugna...

EUVD-2001-0120

Malware in sbrugna...

EUVD-2023-54493

Malicious code in bioql PyPI...

EUVD-2024-53142

Malicious code in bioql PyPI...

K000152313: shadow-utils vulnerability CVE-2024-56433

Security Advisory Description shadow-utils aka shadow 4.4 through 4.17.0 establishes a default /etc/subuid behavior e.g., uid 100000 through 165535 for the first user account that can realistically conflict with the uids of users defined on locally administered networks, potentially leading to...

TencentOS Server 4: shadow-utils (TSSA-2025:0065)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0065 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 3: shadow-utils (TSSA-2023:0297)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0297 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Alibaba Cloud Linux 3 : 0041: shadow-utils (ALINUX3-SA-2024:0041)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0041 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-4641: A flaw was found in shadow-utils. Wh...

shadow-utils bug fix and enhancement update

An update is available for shadow-utils. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

CBL Mariner 2.0 Security Update: shadow-utils (CVE-2023-4641)

The version of shadow-utils installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4641 advisory. - A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice...

CVE-2023-4641 affecting package shadow-utils for versions less than 4.9-14

CVE-2023-4641 affecting package shadow-utils for versions less than 4.9-14. A patched version of the package is available...

Security Bulletin: IBM Security Verify Governance - Identity Manager has multiple vulnerabilities

Summary Multiple security vulnerabilities have been addressed in updates to IBM Security Verify Governance - Identity Manager software component and IBM Security Verify Governance - Identity Manager virtual appliance component. Vulnerability Details CVEID:CVE-2024-38809 DESCRIPTION: VMware Tanzu...

CVE-2024-56433 affecting package shadow-utils for versions less than shadow-utils_4.18.0

CVE-2024-56433 affecting package shadow-utils for versions less than shadow-utils4.18.0. A patched version of the package is available...

shadow-utils bug fix update

An update is available for shadow-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The shadow-utils packages include programs for converting UNIX password...