oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE Request: pam

From: Marc Deslauriers <marc.deslauriers () canonical com>
Date: Tue, 18 Oct 2011 09:03:24 -0400
Hello,

Could a CVE please be assigned to the following issue:

A Debian/Ubuntu specific patch in pam, update-motd, calls the scripts
in /etc/update-motd.d as root without sanitizing the environment.

See:

https://bugs.launchpad.net/ubuntu/+source/pam/+bug/610125

Thanks,

Marc.
Previous By Date Next
Previous By Thread Next

Current thread: