Lucene search

Ubuntu.comUB:CVE-2022-28321

HistorySep 19, 2022 - 12:00 a.m.

CVE-2022-28321

2022-09-1900:00:00

ubuntu.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

55.6%

JSON

The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows
authentication bypass for SSH logins. The pam_access.so module doesn’t
correctly restrict login if a user tries to connect from an IP address that
is not resolvable via DNS. In such conditions, a user with denied access to
a machine can still get access. NOTE: the relevance of this issue is
largely limited to openSUSE Tumbleweed and openSUSE Factory; it does not
affect Linux-PAM upstream.

Bugs

<https://bugzilla.suse.com/show_bug.cgi?id=1197654>

Notes

Author	Note
rodrigo-zaiden	it was stated that upstream is not affected, so, Ubuntu might not be affected as well, it worth checking
mdeslaur	This CVE was assigned to a flaw in SUSE-specific code that was part of the upstream PR226, and did not make its way into the the upstream Linux-PAM code. The issue was fixed in PR447, which was included in upstream Linux-PAM 1.5.3. USN-5825-1 and USN-5825-2 added the whole PR447 which fixed a bug, even though the original package didn’t contain the vulnerability described in this CVE. Marking lunar, mantic, and noble as not-affected since they do not contain the vulnerable code.

Author

Note

rodrigo-zaiden

it was stated that upstream is not affected, so, Ubuntu might not be affected as well, it worth checking

mdeslaur

This CVE was assigned to a flaw in SUSE-specific code that was part of the upstream PR226, and did not make its way into the the upstream Linux-PAM code. The issue was fixed in PR447, which was included in upstream Linux-PAM 1.5.3. USN-5825-1 and USN-5825-2 added the whole PR447 which fixed a bug, even though the original package didn’t contain the vulnerability described in this CVE. Marking lunar, mantic, and noble as not-affected since they do not contain the vulnerable code.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchpam< 1.1.8-3.6ubuntu2.18.04.4UNKNOWN
ubuntu20.04noarchpam< 1.3.1-5ubuntu4.4UNKNOWN
ubuntu22.04noarchpam< 1.4.0-11ubuntu2.1UNKNOWN
ubuntu22.10noarchpam< 1.5.2-2ubuntu1.1UNKNOWN
ubuntu14.04noarchpam< 1.1.8-1ubuntu2.2+esm1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchpam< 1.1.8-3.2ubuntu2.3+esm2) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	pam	< 1.1.8-3.6ubuntu2.18.04.4	UNKNOWN
ubuntu	20.04	noarch	pam	< 1.3.1-5ubuntu4.4	UNKNOWN
ubuntu	22.04	noarch	pam	< 1.4.0-11ubuntu2.1	UNKNOWN
ubuntu	22.10	noarch	pam	< 1.5.2-2ubuntu1.1	UNKNOWN
ubuntu	14.04	noarch	pam	< 1.1.8-1ubuntu2.2+esm1) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	16.04	noarch	pam	< 1.1.8-3.2ubuntu2.3+esm2) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN