Unknown vulnerability in the passwd_check function in Shadow 4.0.4.1, and possibly other versions before 4.0.5, allows local users to conduct unauthorized activities when an error from a pam_chauthtok function call is not properly handled.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Shadow | Debian | 4.0.4.1 (including) | 4.0.4.1 (including) |
Shadow | Ubuntu | dapper | * |
Shadow | Ubuntu | devel | * |
Shadow | Ubuntu | edgy | * |
Shadow | Ubuntu | feisty | * |