CVE-2023-4641
Affects shadow-utils. The flaw occurs when changing a password: shadow-utils asks for the password twice, and if the second attempt fails, it does not properly clean the buffer, potentially allowing an attacker with sufficient access to retrieve the previous password from memory. Multiple advisor...