CVE-2018-17953

Summary

A incorrect variable in a SUSE specific patch for pam_access rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pam_access rules not being applied (fail open).

Affected Software

VendorProductVersion RangeStatus
SUSEpam1.3.0 < 1.3.0 before 2018-11-30affected

Weaknesses

  • CWE-284: CWE-284

ADP Enrichment

CVE Program Container

Additional References

References