Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-jcgx-qjj8-pgf8

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon an error by the crypt or dispcrypt function as implemented in glibc 2.17 and later, which allows attackers to bypass the screen lock via vectors related to invalid salts.

The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon an error by the crypt or dispcrypt function as implemented in glibc 2.17 and later, which allows attackers to bypass the screen lock via vectors related to invalid salts.

Ссылки

EPSS

Процентиль: 19%
0.00062
Низкий

CVE ID

CVE-2013-4143

Связанные уязвимости

nvd логотип

CVE-2013-4143

nvd
больше 11 лет назад

The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon an error by the crypt or dispcrypt function as implemented in glibc 2.17 and later, which allows attackers to bypass the screen lock via vectors related to invalid salts.

debian логотип

CVE-2013-4143

debian
больше 11 лет назад

The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockm ...

fstec логотип

BDU:2015-09741

fstec
больше 12 лет назад

Уязвимость операционной системы Gentoo Linux, позволяющая злоумышленнику нарушить доступность защищаемой информации

EPSS

Процентиль: 19%
0.00062
Низкий

CVE ID

CVE-2013-4143