ask_password is vulnerable to authentication bypass. The tomb can be unlocked using any password when using pinentry-curses and non-empty $DISPLAY.
CPE | Name | Operator | Version |
---|---|---|---|
tomb:sid | eq | 2.7+dfsg2-2 | |
tomb:bullseye | eq | 2.7+dfsg2-2 | |
tomb:sid | eq | 2.7+dfsg2-2 | |
tomb:bullseye | eq | 2.7+dfsg2-2 |